hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-12 02:24:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
0b56bf98f3363cbfb375f753a9fd792c046be774
codeql/java/ql/src/change-notes/released/0.6.2.md
github-actions[bot] 7aa23cf11d Release preparation for version 2.13.3
2023-05-22 20:47:00 +00:00

544 B
Raw Blame History

0.6.2

Minor Analysis Improvements

  • The query java/groovy-injection now recognizes groovy.text.TemplateEngine.createTemplate as a sink.
  • The queries java/xxe and java/xxe-local now recognize the second argument of calls to XPath.evaluate as a sink.
  • Experimental sinks for the query "Resolving XML external entity in user-controlled data" (java/xxe) have been promoted to the main query pack. These sinks were originally submitted as part of an experimental query by @haby0.