hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2720f5796590f4eaf8c855ea1fef542e7eb6077c
codeql/csharp/ql/lib/change-notes/released/5.2.3.md
github-actions[bot] 0bfa93828b Release preparation for version 2.23.0
2025-09-02 11:09:32 +00:00

689 B
Raw Blame History

5.2.3

Minor Analysis Improvements

  • A bug has been fixed in the data flow analysis, which means that flow through calls using the base qualifier may now be tracked more accurately.
  • Added summary models for System.Xml.XmlReader, System.Xml.XmlTextReader and System.Xml.XmlDictionaryReader.
  • Models-as-data summaries for byte and char arrays and pointers now treat the entire collection as tainted, reflecting their common use as string alternatives.
  • The default taint tracking configuration now allows implicit reads from collections at sinks and in additional flow steps. This increases flow coverage for many taint tracking queries and helps reduce false negatives.