hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 17:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
9faf300dd0bdabe09d942e5bd0ebbd9e0dc03cf3
codeql/swift/ql/src/CHANGELOG.md
github-actions[bot] 0a3670727f Release preparation for version 2.14.6
2023-09-19 11:40:30 +00:00

1.5 KiB
Raw Blame History

0.2.5

No user-facing changes.

0.2.4

New Queries

  • Added new query "Incomplete regular expression for hostnames" (swift/incomplete-hostname-regexp). This query finds regular expressions matching a URL or hostname that may match more hostnames than expected.

0.2.3

No user-facing changes.

0.2.2

New Queries

  • Added new query "Command injection" (swift/command-line-injection). The query finds places where user input is used to execute system commands without proper escaping.
  • Added new query "Bad HTML filtering regexp" (swift/bad-tag-filter). This query finds regular expressions that match HTML tags in a way that is not robust and can easily lead to security issues.

0.2.1

New Queries

  • Added new query "Regular expression injection" (swift/regex-injection). The query finds places where user input is used to construct a regular expression without proper escaping.
  • Added new query "Inefficient regular expression" (swift/redos). This query finds regular expressions that require exponential time to match certain inputs and may make an application vulnerable to denial-of-service attacks.

0.2.0

Bug Fixes

  • Functions and methods modeled as flow summaries are no longer shown in the path of path-problem queries. This results in more succinct paths for most security queries.

0.1.2

No user-facing changes.

0.1.1

Minor Analysis Improvements

  • Fixed some false positive results from the swift/string-length-conflation query, caused by imprecise sinks.