codeql/1.9.0.md at 7b25e22a37cb10de28d8a7af687ed2725de399bc - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Files

github-actions[bot] 64fcdd1f2f Release preparation for version 2.23.4

2025-11-03 14:52:23 +00:00

569 B

Raw Blame History

1.9.0

New Queries

The java/sensitive-cookie-not-httponly query has been promoted from experimental to the main query pack.
Added a new query, java/escaping, to detect values escaping from classes marked as @ThreadSafe.
Added a new query, java/not-threadsafe, to detect data races in classes marked as @ThreadSafe.
Added a new query, java/safe-publication, to detect unsafe publication in classes marked as @ThreadSafe.

Minor Analysis Improvements

Calls to String.matches are now treated as sanitizers for the java/ssrf query.