Files
codeql/javascript/ql/src/change-notes/released/1.6.0.md
2025-05-13 21:14:27 +00:00

811 B

1.6.0

Query Metadata Changes

  • The tag external/cwe/cwe-79 has been removed from js/disabling-electron-websecurity and the tag external/cwe/cwe-079 has been added.
  • The tag external/cwe/cwe-20 has been removed from js/count-untrusted-data-external-api and the tag external/cwe/cwe-020 has been added.
  • The tag external/cwe/cwe-20 has been removed from js/untrusted-data-to-external-api and the tag external/cwe/cwe-020 has been added.
  • The tag external/cwe/cwe-20 has been removed from js/untrusted-data-to-external-api-more-sources and the tag external/cwe/cwe-020 has been added.

Minor Analysis Improvements

  • Type information is now propagated more precisely through Promise.all() calls, leading to more resolved calls and more sources and sinks being detected.