hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-06-25 22:57:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
d38ffe0ad59fe1cf0dc4e30364996abd4a77586f
codeql/javascript/ql/src/change-notes/released/2.3.0.md
github-actions[bot] 4142b9c4ce Release preparation for version 2.24.0
2026-01-19 14:49:14 +00:00

837 B
Raw Blame History

2.3.0

Major Analysis Improvements

  • JavaScript files with an average line length greater than 200 are now considered minified and will no longer be analyzed. For use-cases where minified files should be analyzed, the original behavior can be restored by setting the environment variable CODEQL_EXTRACTOR_JAVASCRIPT_ALLOW_MINIFIED_FILES=true.

Minor Analysis Improvements

  • The model of vue-router now properly detects taint sources in cases where the props property is a callback.
  • Fixed a bug in the Next.js model that would cause the analysis to miss server-side taint sources in files named route or page appearing outside api and pages folders.
  • new Response(x) is no longer seen as a reflected XSS sink when no content-type header is set, since the content type defaults to text/plain.