codeql/1.1.0.md at b239bfabf1893bf12ff205514a64ea52ed4fd2f4 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2026-01-05 18:50:23 +01:00

Files

github-actions[bot] b0d6778652 Release preparation for version 2.18.0

2024-07-08 09:10:51 +00:00

473 B

Raw Blame History

1.1.0

Major Analysis Improvements

The query java/weak-cryptographic-algorithm no longer alerts about RSA/ECB algorithm strings.

Minor Analysis Improvements

The query java/tainted-permissions-check now uses threat models. This means that local sources are no longer included by default for this query, but can be added by enabling the local threat model.
Added more org.apache.commons.io.FileUtils-related sinks to the path injection query.