mirror of
https://github.com/github/codeql.git
synced 2025-12-18 01:33:15 +01:00
6 lines
291 B
Markdown
6 lines
291 B
Markdown
## 2.6.10
|
|
|
|
### Minor Analysis Improvements
|
|
|
|
* Removed `libxmljs` as an XML bomb sink. The underlying libxml2 library now includes [entity reference loop detection](https://github.com/GNOME/libxml2/blob/0c948334a8f5c66d50e9f8992e62998017dc4fc6/NEWS#L905-L908) that prevents XML bomb attacks.
|