codeql/java/change-notes/2021-05-24-hardcoded-shiro-key-in-api-call.md

lgtm,codescanning

• The query "Hard-coded credential in API call" (java/hardcoded-credential-api-call) can now detect a hard-coded Apache Shiro cipher key.
• The query "Hard-coded credential in API call" (java/hardcoded-credential-api-call) now detects hard-coded credentials that are Base64 encoded or decoded before use.