hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
fa850cccb1397569c74f51a84e062e093f465557
codeql/javascript/ql/lib/change-notes/released/2.5.0.md
github-actions[bot] fa850cccb1 Release preparation for version 2.20.6
2025-03-03 17:13:19 +00:00

655 B
Raw Blame History

2.5.0

Major Analysis Improvements

  • Added support for the response threat model kind, which can enabled with advanced setup. When enabled, the response data coming back from an outgoing HTTP request is considered a source of taint.
  • Added support for the useQuery hook from @tanstack/react-query.

Minor Analysis Improvements

  • The response.download() function in express is now recognized as a sink for path traversal attacks.