codeql/1.1.0.md at 2720f5796590f4eaf8c855ea1fef542e7eb6077c

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

github-actions[bot] 17cd9624fb Release preparation for version 2.18.3

2024-08-21 17:13:52 +00:00

1.1.0

Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated.

Added some new local source models. Most prominently System.IO.Path.GetTempPath and System.Environment.GetFolderPath. This might produce more alerts, if the local threat model is enabled.
The extractor has been changed to not skip source files that have already been seen. This has an impact on source files that are compiled multiple times in the build process. Source files with conditional compilation preprocessor directives (such as #if) are now extracted for each set of preprocessor symbols that are used during the build process.