From ec70b80a0ab8c1ada2f09dd05579da94b9f90c0d Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 21 Jan 2025 12:47:53 +0000 Subject: [PATCH 1/2] Release preparation for version 2.20.2 --- actions/ql/lib/CHANGELOG.md | 4 ++++ actions/ql/lib/change-notes/released/0.4.1.md | 3 +++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 4 ++++ actions/ql/src/change-notes/released/0.4.1.md | 3 +++ actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 24 +++++++++++++++++++ .../change-notes/2024-01-16-consteval-if.md | 4 ---- .../2024-12-23-concept-template.md | 5 ---- .../lib/change-notes/2024-12-24-concept-id.md | 5 ---- .../2024-12-25-variable-specialization.md | 5 ---- .../2024-12-26-requires-clause.md | 7 ------ cpp/ql/lib/change-notes/2025-01-07-config.md | 4 ---- ...1-13-indirect-instruction-barrier-guard.md | 4 ---- .../change-notes/2025-01-13-struct-proxy.md | 6 ----- .../lib/change-notes/2025-01-16-noreturn.md | 4 ---- cpp/ql/lib/change-notes/released/3.2.0.md | 23 ++++++++++++++++++ cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 7 ++++++ .../change-notes/2025-01-09-SysAllocString.md | 4 ---- .../1.3.2.md} | 8 ++++--- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.32.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.32.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 8 +++++++ .../2025-01-03-allow-ref-struct.md | 4 ---- .../2025-01-06-razor-relative-path.md | 4 ---- .../2025-01-09-implicit-to-string.md | 4 ---- csharp/ql/lib/change-notes/released/4.0.2.md | 7 ++++++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 4 ++++ csharp/ql/src/change-notes/released/1.0.15.md | 3 +++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 10 ++++++++ ...l-and-database-sql-driver-source-models.md | 4 ---- .../2025-01-05-gorm-database-sources.md | 5 ---- .../2025-01-07-sqlx-source-models.md | 4 ---- .../2025-01-09-beego-orm-models.md | 4 ---- go/ql/lib/change-notes/released/3.0.2.md | 9 +++++++ go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 4 ++++ go/ql/src/change-notes/released/1.1.6.md | 3 +++ go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 12 ++++++++++ .../2025-01-03-path-transformer.md | 5 ---- .../6.1.0.md} | 11 ++++++--- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 7 ++++++ ...-java-weak-crypto-algorithm-explanation.md | 4 ---- .../1.1.12.md} | 8 ++++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 17 +++++++++++++ .../2025-01-07-dataflow-deprecation.md | 6 ----- .../lib/change-notes/2025-01-07-dataflow.md | 5 ---- .../ql/lib/change-notes/released/2.3.0.md | 16 +++++++++++++ javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 11 +++++++++ .../2025-01-09-angular2-xss-through-dom.md | 4 ---- .../2025-01-09-import-spec-strings.md | 5 ---- .../ql/src/change-notes/released/1.3.0.md | 10 ++++++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 7 ++++++ .../change-notes/2024-12-11-lxml-flowsteps.md | 4 ---- .../change-notes/2025-01-10-sensitive-data.md | 4 ---- .../ql/lib/change-notes/released/3.1.1.md | 8 ++++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 4 ++++ python/ql/src/change-notes/released/1.4.1.md | 3 +++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 7 ++++++ .../change-notes/2025-01-10-sensitive-data.md | 4 ---- .../3.0.2.md} | 10 ++++---- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 ++++ ruby/ql/src/change-notes/released/1.1.10.md | 3 +++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 3 +++ rust/ql/lib/change-notes/released/0.1.0.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 ++ rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 3 +++ rust/ql/src/change-notes/released/0.1.0.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 ++ rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 ++++ .../dataflow/change-notes/released/1.1.9.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.15.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.15.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ++++ shared/ssa/change-notes/released/1.0.15.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/1.0.15.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ .../typeflow/change-notes/released/1.0.15.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.15.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.2.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.15.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.15.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 +++++ .../3.1.1.md} | 7 +++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 ++++ swift/ql/src/change-notes/released/1.0.15.md | 3 +++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 178 files changed, 479 insertions(+), 211 deletions(-) create mode 100644 actions/ql/lib/change-notes/released/0.4.1.md create mode 100644 actions/ql/src/change-notes/released/0.4.1.md delete mode 100644 cpp/ql/lib/change-notes/2024-01-16-consteval-if.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-23-concept-template.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-24-concept-id.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-26-requires-clause.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-07-config.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-16-noreturn.md create mode 100644 cpp/ql/lib/change-notes/released/3.2.0.md delete mode 100644 cpp/ql/src/change-notes/2025-01-09-SysAllocString.md rename cpp/ql/src/change-notes/{2025-01-07-cmake.md => released/1.3.2.md} (72%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md create mode 100644 csharp/ql/lib/change-notes/released/4.0.2.md create mode 100644 csharp/ql/src/change-notes/released/1.0.15.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.15.md delete mode 100644 go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md delete mode 100644 go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md delete mode 100644 go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md delete mode 100644 go/ql/lib/change-notes/2025-01-09-beego-orm-models.md create mode 100644 go/ql/lib/change-notes/released/3.0.2.md create mode 100644 go/ql/src/change-notes/released/1.1.6.md delete mode 100644 java/ql/lib/change-notes/2025-01-03-path-transformer.md rename java/ql/lib/change-notes/{2024-12-18-javac-tool-interception.md => released/6.1.0.md} (72%) delete mode 100644 java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md rename java/ql/src/change-notes/{2025-01-06-write-replace-serializable.md => released/1.1.12.md} (51%) delete mode 100644 javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md delete mode 100644 javascript/ql/lib/change-notes/2025-01-07-dataflow.md create mode 100644 javascript/ql/lib/change-notes/released/2.3.0.md delete mode 100644 javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md delete mode 100644 javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md create mode 100644 javascript/ql/src/change-notes/released/1.3.0.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.15.md delete mode 100644 python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md delete mode 100644 python/ql/lib/change-notes/2025-01-10-sensitive-data.md rename javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md => python/ql/lib/change-notes/released/3.1.1.md (55%) create mode 100644 python/ql/src/change-notes/released/1.4.1.md delete mode 100644 ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md rename ruby/ql/lib/change-notes/{2024-12-20-data-flow-types.md => released/3.0.2.md} (57%) create mode 100644 ruby/ql/src/change-notes/released/1.1.10.md create mode 100644 rust/ql/lib/CHANGELOG.md create mode 100644 rust/ql/lib/change-notes/released/0.1.0.md create mode 100644 rust/ql/lib/codeql-pack.release.yml create mode 100644 rust/ql/src/CHANGELOG.md create mode 100644 rust/ql/src/change-notes/released/0.1.0.md create mode 100644 rust/ql/src/codeql-pack.release.yml create mode 100644 shared/controlflow/change-notes/released/1.0.15.md create mode 100644 shared/dataflow/change-notes/released/1.1.9.md create mode 100644 shared/mad/change-notes/released/1.0.15.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.15.md create mode 100644 shared/regex/change-notes/released/1.0.15.md create mode 100644 shared/ssa/change-notes/released/1.0.15.md create mode 100644 shared/threat-models/change-notes/released/1.0.15.md create mode 100644 shared/tutorial/change-notes/released/1.0.15.md create mode 100644 shared/typeflow/change-notes/released/1.0.15.md create mode 100644 shared/typetracking/change-notes/released/1.0.15.md create mode 100644 shared/typos/change-notes/released/1.0.15.md create mode 100644 shared/util/change-notes/released/2.0.2.md create mode 100644 shared/xml/change-notes/released/1.0.15.md create mode 100644 shared/yaml/change-notes/released/1.0.15.md rename swift/ql/lib/change-notes/{2025-01-10-sensitive-data.md => released/3.1.1.md} (84%) create mode 100644 swift/ql/src/change-notes/released/1.0.15.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 7ad10899ce1c..ce81d2262f81 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### New Features diff --git a/actions/ql/lib/change-notes/released/0.4.1.md b/actions/ql/lib/change-notes/released/0.4.1.md new file mode 100644 index 000000000000..0d865d0571e1 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 458bfbeccffd..89fa3a871807 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 56654cd7eab4..0efaa0aac401 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.1-dev +version: 0.4.1 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index caa8feca5585..3eac1f799870 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### New Queries diff --git a/actions/ql/src/change-notes/released/0.4.1.md b/actions/ql/src/change-notes/released/0.4.1.md new file mode 100644 index 000000000000..0d865d0571e1 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 458bfbeccffd..89fa3a871807 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 7c4d7dde27bd..346b621f8dc9 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.1-dev +version: 0.4.1 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 919bd905e73b..a17d5f27f5b6 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 3.2.0 + +### New Features + +* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. +* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* Template classes that are of `struct` type are now also instances of the `Struct` class. +* Template classes that are of `union` type are now also instances of the `Union` class. +* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. +* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. +* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. +* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. +* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. +* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. +* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. +* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. +* A new class `Concept` was introduced, which represents C++20 concepts. +* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. +* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. + +### Minor Analysis Improvements + +* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. + ## 3.1.0 ### Deprecated APIs diff --git a/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md b/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md deleted file mode 100644 index 0b6c2faea959..000000000000 --- a/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. diff --git a/cpp/ql/lib/change-notes/2024-12-23-concept-template.md b/cpp/ql/lib/change-notes/2024-12-23-concept-template.md deleted file mode 100644 index 067d5f4f6cf1..000000000000 --- a/cpp/ql/lib/change-notes/2024-12-23-concept-template.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `Concept` was introduced, which represents C++20 concepts. -* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. diff --git a/cpp/ql/lib/change-notes/2024-12-24-concept-id.md b/cpp/ql/lib/change-notes/2024-12-24-concept-id.md deleted file mode 100644 index 77aaed42abb4..000000000000 --- a/cpp/ql/lib/change-notes/2024-12-24-concept-id.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. - diff --git a/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md b/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md deleted file mode 100644 index b34e4bf34a84..000000000000 --- a/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. -* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. diff --git a/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md b/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md deleted file mode 100644 index f8ac1395f2c7..000000000000 --- a/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: feature ---- -* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. -* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. -* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. -* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. diff --git a/cpp/ql/lib/change-notes/2025-01-07-config.md b/cpp/ql/lib/change-notes/2025-01-07-config.md deleted file mode 100644 index 73b4962cf345..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-07-config.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. diff --git a/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md b/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md deleted file mode 100644 index 61f406a8179e..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md b/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md deleted file mode 100644 index 2052b8af495e..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- -* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. -* Template classes that are of `struct` type are now also instances of the `Struct` class. -* Template classes that are of `union` type are now also instances of the `Union` class. diff --git a/cpp/ql/lib/change-notes/2025-01-16-noreturn.md b/cpp/ql/lib/change-notes/2025-01-16-noreturn.md deleted file mode 100644 index a270b650d91d..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-16-noreturn.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. diff --git a/cpp/ql/lib/change-notes/released/3.2.0.md b/cpp/ql/lib/change-notes/released/3.2.0.md new file mode 100644 index 000000000000..513faa95cd41 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/3.2.0.md @@ -0,0 +1,23 @@ +## 3.2.0 + +### New Features + +* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. +* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* Template classes that are of `struct` type are now also instances of the `Struct` class. +* Template classes that are of `union` type are now also instances of the `Union` class. +* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. +* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. +* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. +* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. +* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. +* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. +* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. +* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. +* A new class `Concept` was introduced, which represents C++20 concepts. +* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. +* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. + +### Minor Analysis Improvements + +* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 82f62960aa3b..f3d134d8910d 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.2.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 6ffc77714d47..7cdffd1f31ba 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.1.1-dev +version: 3.2.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 7d957e42696c..671026afc561 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.3.2 + +### Minor Analysis Improvements + +* Added dataflow models for `SysAllocString` and related functions. +* The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration. + ## 1.3.1 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md b/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md deleted file mode 100644 index 919cfbecfb00..000000000000 --- a/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added dataflow models for `SysAllocString` and related functions. diff --git a/cpp/ql/src/change-notes/2025-01-07-cmake.md b/cpp/ql/src/change-notes/released/1.3.2.md similarity index 72% rename from cpp/ql/src/change-notes/2025-01-07-cmake.md rename to cpp/ql/src/change-notes/released/1.3.2.md index e2909a8bcead..1e504b099e34 100644 --- a/cpp/ql/src/change-notes/2025-01-07-cmake.md +++ b/cpp/ql/src/change-notes/released/1.3.2.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- +## 1.3.2 + +### Minor Analysis Improvements + +* Added dataflow models for `SysAllocString` and related functions. * The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index e71b6d081f15..86a9cb32d86b 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.1 +lastReleaseVersion: 1.3.2 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 5f0e63bfec48..d0e9e6fa0844 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.2-dev +version: 1.3.2 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 0a74ff6d7d08..5e50f32db5f4 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.32 + +No user-facing changes. + ## 1.7.31 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md new file mode 100644 index 000000000000..c729b717c6ad --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md @@ -0,0 +1,3 @@ +## 1.7.32 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 908f8a00a39b..a09015b688d3 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.32 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 39d5520bf764..a3760994ee09 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.32-dev +version: 1.7.32 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 0a74ff6d7d08..5e50f32db5f4 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.32 + +No user-facing changes. + ## 1.7.31 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md new file mode 100644 index 000000000000..c729b717c6ad --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md @@ -0,0 +1,3 @@ +## 1.7.32 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 908f8a00a39b..a09015b688d3 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.32 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 23f5eddd1419..21a841c1167f 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.32-dev +version: 1.7.32 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 857acdec93a9..ccc682d0c4f8 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,11 @@ +## 4.0.2 + +### Minor Analysis Improvements + +* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. +* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. +* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. + ## 4.0.1 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md b/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md deleted file mode 100644 index c9a7234fa202..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. diff --git a/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md b/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md deleted file mode 100644 index dcb481739459..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. diff --git a/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md b/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md deleted file mode 100644 index 2956898841ee..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. diff --git a/csharp/ql/lib/change-notes/released/4.0.2.md b/csharp/ql/lib/change-notes/released/4.0.2.md new file mode 100644 index 000000000000..58eea5ab5a46 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/4.0.2.md @@ -0,0 +1,7 @@ +## 4.0.2 + +### Minor Analysis Improvements + +* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. +* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. +* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index c0db4dcc0b33..765f0717719a 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.1 +lastReleaseVersion: 4.0.2 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index e32376ee2706..1b14be57a329 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.2-dev +version: 4.0.2 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 1adfe6e1822c..70e815289e83 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 ### Minor Analysis Improvements diff --git a/csharp/ql/src/change-notes/released/1.0.15.md b/csharp/ql/src/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 0034f69ef874..4835e57483d3 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.15-dev +version: 1.0.15 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 2d5ba191d2eb..6fe780321556 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.15.md b/go/ql/consistency-queries/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 47d3802ccdbf..aea4c4495acf 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.15-dev +version: 1.0.15 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index b48a4098866f..430521477301 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* `database` local source models have been added for the Beego ORM package. +* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. +* Added `database` source models for database methods from the `gorm.io/gorm` package. +` +* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. + ## 3.0.1 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md b/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md deleted file mode 100644 index 3ee41e073eca..000000000000 --- a/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. diff --git a/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md b/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md deleted file mode 100644 index a8ae4792feb5..000000000000 --- a/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `database` source models for database methods from the `gorm.io/gorm` package. -` diff --git a/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md b/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md deleted file mode 100644 index 820c255194c4..000000000000 --- a/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. diff --git a/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md b/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md deleted file mode 100644 index e68a5315ff1f..000000000000 --- a/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the Beego ORM package. diff --git a/go/ql/lib/change-notes/released/3.0.2.md b/go/ql/lib/change-notes/released/3.0.2.md new file mode 100644 index 000000000000..8301be3230b0 --- /dev/null +++ b/go/ql/lib/change-notes/released/3.0.2.md @@ -0,0 +1,9 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* `database` local source models have been added for the Beego ORM package. +* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. +* Added `database` source models for database methods from the `gorm.io/gorm` package. +` +* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index e3b15d965db6..de0e567baf76 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.2 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 23156a6939f3..88f7ae1c4f5e 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.2-dev +version: 3.0.2 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 838a8bce5eaa..f28caff537d3 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.6 + +No user-facing changes. + ## 1.1.5 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.1.6.md b/go/ql/src/change-notes/released/1.1.6.md new file mode 100644 index 000000000000..553350f40afa --- /dev/null +++ b/go/ql/src/change-notes/released/1.1.6.md @@ -0,0 +1,3 @@ +## 1.1.6 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index df39a9de059d..9e712a00a21d 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.5 +lastReleaseVersion: 1.1.6 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index e33da9a8c914..b18442add414 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.6-dev +version: 1.1.6 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index e7aa3c152dea..ac8d8d6651f3 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 6.1.0 + +### New Features + +* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. + +### Minor Analysis Improvements + +* `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible. +* `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`. +* `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`. + ## 6.0.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/2025-01-03-path-transformer.md b/java/ql/lib/change-notes/2025-01-03-path-transformer.md deleted file mode 100644 index 919383bfb610..000000000000 --- a/java/ql/lib/change-notes/2025-01-03-path-transformer.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. - diff --git a/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md b/java/ql/lib/change-notes/released/6.1.0.md similarity index 72% rename from java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md rename to java/ql/lib/change-notes/released/6.1.0.md index 99c4756b766c..2f1050c4a8a1 100644 --- a/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md +++ b/java/ql/lib/change-notes/released/6.1.0.md @@ -1,6 +1,11 @@ ---- -category: minorAnalysis ---- +## 6.1.0 + +### New Features + +* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. + +### Minor Analysis Improvements + * `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible. * `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`. * `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index f8c4fa43ccb7..22247782f3e5 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 6.1.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 18b74a919dd2..693b1ba0d063 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.0.1-dev +version: 6.1.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index c7148cba8d86..478735d6ed48 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.1.12 + +### Bug Fixes + +* Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm. +* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. + ## 1.1.11 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md b/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md deleted file mode 100644 index c26f0816d143..000000000000 --- a/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. diff --git a/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md b/java/ql/src/change-notes/released/1.1.12.md similarity index 51% rename from java/ql/src/change-notes/2025-01-06-write-replace-serializable.md rename to java/ql/src/change-notes/released/1.1.12.md index 9eceda87acec..d0aa65411b73 100644 --- a/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md +++ b/java/ql/src/change-notes/released/1.1.12.md @@ -1,4 +1,6 @@ ---- -category: fix ---- +## 1.1.12 + +### Bug Fixes + * Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm. +* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 121f8cf035d3..f5b135d01938 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.11 +lastReleaseVersion: 1.1.12 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index c808e5db6b00..933c13c31669 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.12-dev +version: 1.1.12 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 7aa60446f0e6..f7773662f1e8 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,20 @@ +## 2.3.0 + +### Deprecated APIs + +* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a + deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. + See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). + +### Major Analysis Improvements + +* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. + This is a significant change and users may consequently observe differences in the alerts generated by the analysis. + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. + ## 2.2.1 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md b/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md deleted file mode 100644 index 411a836d653f..000000000000 --- a/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: deprecated ---- -* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a - deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. - See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). diff --git a/javascript/ql/lib/change-notes/2025-01-07-dataflow.md b/javascript/ql/lib/change-notes/2025-01-07-dataflow.md deleted file mode 100644 index 9c94c47cd377..000000000000 --- a/javascript/ql/lib/change-notes/2025-01-07-dataflow.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. - This is a significant change and users may consequently observe differences in the alerts generated by the analysis. diff --git a/javascript/ql/lib/change-notes/released/2.3.0.md b/javascript/ql/lib/change-notes/released/2.3.0.md new file mode 100644 index 000000000000..9ac4b694ac76 --- /dev/null +++ b/javascript/ql/lib/change-notes/released/2.3.0.md @@ -0,0 +1,16 @@ +## 2.3.0 + +### Deprecated APIs + +* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a + deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. + See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). + +### Major Analysis Improvements + +* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. + This is a significant change and users may consequently observe differences in the alerts generated by the analysis. + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 863e3cd380d9..5936154675ae 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.2.1 +lastReleaseVersion: 2.3.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index a37a0b685e2c..cfd0698ad5cc 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.2.2-dev +version: 2.3.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 5bf4466796e9..0a932a159509 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.3.0 + +### Major Analysis Improvements + +* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. + +### Bug Fixes + +* Fixed a TypeScript extractor crash that would occur when encountering an export specifier + whose local specifier was a string literal. + ## 1.2.6 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md b/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md deleted file mode 100644 index b88a3ca3de65..000000000000 --- a/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. diff --git a/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md b/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md deleted file mode 100644 index 02fd7bdac94e..000000000000 --- a/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* Fixed a TypeScript extractor crash that would occur when encountering an export specifier - whose local specifier was a string literal. diff --git a/javascript/ql/src/change-notes/released/1.3.0.md b/javascript/ql/src/change-notes/released/1.3.0.md new file mode 100644 index 000000000000..3c6062323cf9 --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.3.0.md @@ -0,0 +1,10 @@ +## 1.3.0 + +### Major Analysis Improvements + +* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. + +### Bug Fixes + +* Fixed a TypeScript extractor crash that would occur when encountering an export specifier + whose local specifier was a string literal. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 24962f7ba24b..ec16350ed6fd 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.6 +lastReleaseVersion: 1.3.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 152a266ef965..1f82f6a23166 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.2.7-dev +version: 1.3.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 490b5dc360a0..46c730a2bdc4 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.15.md b/misc/suite-helpers/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 26c6f3aee9cc..562f760e2656 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.15-dev +version: 1.0.15 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index aabefe63a420..13a183b0bc20 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 3.1.1 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. + ## 3.1.0 ### New Features diff --git a/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md b/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md deleted file mode 100644 index 0ceaf914c361..000000000000 --- a/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2025-01-10-sensitive-data.md b/python/ql/lib/change-notes/2025-01-10-sensitive-data.md deleted file mode 100644 index 5eac93cb1a6b..000000000000 --- a/python/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md b/python/ql/lib/change-notes/released/3.1.1.md similarity index 55% rename from javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md rename to python/ql/lib/change-notes/released/3.1.1.md index 5eac93cb1a6b..37eeaa379bf2 100644 --- a/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ b/python/ql/lib/change-notes/released/3.1.1.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- +## 3.1.1 + +### Minor Analysis Improvements + * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 82f62960aa3b..c06beda86a3a 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.1.1 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 2c1d49af4c46..388f129d15b2 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.1-dev +version: 3.1.1 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index d5cacfc84018..48612d804ae8 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.1 + +No user-facing changes. + ## 1.4.0 ### New Queries diff --git a/python/ql/src/change-notes/released/1.4.1.md b/python/ql/src/change-notes/released/1.4.1.md new file mode 100644 index 000000000000..38987aa49cd0 --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.1.md @@ -0,0 +1,3 @@ +## 1.4.1 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index b8b2e97d5086..43ccf4467bed 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index daed42ec94b7..13607fb6e539 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.1-dev +version: 1.4.1 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 9179de3b7d5f..917cc0290a7a 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. + ## 3.0.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md b/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md deleted file mode 100644 index 5eac93cb1a6b..000000000000 --- a/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md b/ruby/ql/lib/change-notes/released/3.0.2.md similarity index 57% rename from ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md rename to ruby/ql/lib/change-notes/released/3.0.2.md index d47b8b77e7e1..fda49a7efdfc 100644 --- a/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md +++ b/ruby/ql/lib/change-notes/released/3.0.2.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- -* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. \ No newline at end of file +## 3.0.2 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index e3b15d965db6..de0e567baf76 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.2 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index fa3b6fbd3c36..8265455b85f6 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.2-dev +version: 3.0.2 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 7d341c3f8086..3b12430e6f77 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.10 + +No user-facing changes. + ## 1.1.9 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.10.md b/ruby/ql/src/change-notes/released/1.1.10.md new file mode 100644 index 000000000000..49c75986f38b --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.10.md @@ -0,0 +1,3 @@ +## 1.1.10 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 6f4795f3ea0b..4c01918d4144 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 1.1.10 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 6ece819a2d6e..89423b9ae922 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.10-dev +version: 1.1.10 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md new file mode 100644 index 000000000000..7b4d4fc699c0 --- /dev/null +++ b/rust/ql/lib/CHANGELOG.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.0.md b/rust/ql/lib/change-notes/released/0.1.0.md new file mode 100644 index 000000000000..7b4d4fc699c0 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml new file mode 100644 index 000000000000..2e08f40f6aa3 --- /dev/null +++ b/rust/ql/lib/codeql-pack.release.yml @@ -0,0 +1,2 @@ +--- +lastReleaseVersion: 0.1.0 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 181e992287ce..2088df8fbc7e 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.0-dev +version: 0.1.0 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md new file mode 100644 index 000000000000..7b4d4fc699c0 --- /dev/null +++ b/rust/ql/src/CHANGELOG.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.0.md b/rust/ql/src/change-notes/released/0.1.0.md new file mode 100644 index 000000000000..7b4d4fc699c0 --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml new file mode 100644 index 000000000000..2e08f40f6aa3 --- /dev/null +++ b/rust/ql/src/codeql-pack.release.yml @@ -0,0 +1,2 @@ +--- +lastReleaseVersion: 0.1.0 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 9073d47cb685..39df51356bd2 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.0-dev +version: 0.1.0 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 5f4501ed1e3d..e876302b58bf 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/1.0.15.md b/shared/controlflow/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/controlflow/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 900e7ad73550..f6ff4ea58c43 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 949660e33811..8524b149db56 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.9 + +No user-facing changes. + ## 1.1.8 ### Minor Analysis Improvements diff --git a/shared/dataflow/change-notes/released/1.1.9.md b/shared/dataflow/change-notes/released/1.1.9.md new file mode 100644 index 000000000000..f9d367d4248c --- /dev/null +++ b/shared/dataflow/change-notes/released/1.1.9.md @@ -0,0 +1,3 @@ +## 1.1.9 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 64972659c426..6f4795f3ea0b 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.8 +lastReleaseVersion: 1.1.9 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 93379260c463..011ade8a4248 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.9-dev +version: 1.1.9 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 1b2146927e53..b7416e72c048 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.15.md b/shared/mad/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index c77998a779ff..0ba8768c65af 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 993922ecc49d..d6049c6a9fcb 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.15.md b/shared/rangeanalysis/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 012485481395..889b31d48072 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 45bb8da81db2..33d1399a12da 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.15.md b/shared/regex/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 2598750f3b61..f7ccb2bffe7d 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index d31fb6c6120c..30a55a5859cb 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.15.md b/shared/ssa/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index b535eee60563..bb32b0a273d8 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 2d5ba191d2eb..6fe780321556 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.15.md b/shared/threat-models/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 903324ab6e70..6978112ee6db 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.15-dev +version: 1.0.15 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index cc4652e04fff..ebfe21d85d17 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.15.md b/shared/tutorial/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 9268c70aa43c..b8a1eeb6c907 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index ac6192fd7d8b..9644aa49fd42 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.15.md b/shared/typeflow/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 10306beaf685..b41796eece49 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index f651b953118f..71a6ce3acf29 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/1.0.15.md b/shared/typetracking/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/typetracking/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 5f4f23526b6f..0d5c9e340676 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 924a3fc0a7bf..e4d9b985300b 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.15.md b/shared/typos/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 665e3ab8d14b..7c8de0f20596 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 9dd6c05d40a1..38800b2bcb71 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.2 + +No user-facing changes. + ## 2.0.1 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.2.md b/shared/util/change-notes/released/2.0.2.md new file mode 100644 index 000000000000..862ef0e9df7c --- /dev/null +++ b/shared/util/change-notes/released/2.0.2.md @@ -0,0 +1,3 @@ +## 2.0.2 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index fe974a4dbf37..81c7f1dbc13c 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.1 +lastReleaseVersion: 2.0.2 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 372d7a95b70a..c9428ed6a966 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.2-dev +version: 2.0.2 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 6837f7507d85..740618e89773 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.15.md b/shared/xml/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index e87c526b006c..37aab4a7b6d7 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 6e940e8d264a..5f6250607e09 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.15.md b/shared/yaml/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 3f800572c973..c7d2d80c7139 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index c976d0c85143..9c569ad4bed3 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 3.1.1 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. + ## 3.1.0 ### Major Analysis Improvements diff --git a/swift/ql/lib/change-notes/2025-01-10-sensitive-data.md b/swift/ql/lib/change-notes/released/3.1.1.md similarity index 84% rename from swift/ql/lib/change-notes/2025-01-10-sensitive-data.md rename to swift/ql/lib/change-notes/released/3.1.1.md index 5eac93cb1a6b..5893b024a74a 100644 --- a/swift/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ b/swift/ql/lib/change-notes/released/3.1.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 3.1.1 + +### Minor Analysis Improvements + * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 82f62960aa3b..c06beda86a3a 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.1.1 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 2d7ecc9e029b..5dcdfea8f7fc 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.1-dev +version: 3.1.1 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index a26a68434ebf..ad51d96751ed 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.15.md b/swift/ql/src/change-notes/released/1.0.15.md new file mode 100644 index 000000000000..8d7f4df3e5f4 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 3b484f28dfab..8debd0d34c2b 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index a99bde028caa..9d11be540624 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.15-dev +version: 1.0.15 groups: - swift - queries From ffa4e3b6d888a75a35bfb0ffae2db4ca6e08e3de Mon Sep 17 00:00:00 2001 From: Chris Smowton Date: Tue, 21 Jan 2025 12:51:15 +0000 Subject: [PATCH 2/2] Fix changelog typos --- cpp/ql/lib/CHANGELOG.md | 2 +- cpp/ql/lib/change-notes/released/3.2.0.md | 2 +- go/ql/lib/CHANGELOG.md | 1 - go/ql/lib/change-notes/released/3.0.2.md | 1 - 4 files changed, 2 insertions(+), 4 deletions(-) diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index a17d5f27f5b6..fa7a301d0433 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -3,7 +3,7 @@ ### New Features * Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. -* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* A new predicate `getDecltype` was added to the `ProxyClass` class, which yields the decltype for the proxy class. * Template classes that are of `struct` type are now also instances of the `Struct` class. * Template classes that are of `union` type are now also instances of the `Union` class. * A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. diff --git a/cpp/ql/lib/change-notes/released/3.2.0.md b/cpp/ql/lib/change-notes/released/3.2.0.md index 513faa95cd41..427e99d5f8b7 100644 --- a/cpp/ql/lib/change-notes/released/3.2.0.md +++ b/cpp/ql/lib/change-notes/released/3.2.0.md @@ -3,7 +3,7 @@ ### New Features * Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. -* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* A new predicate `getDecltype` was added to the `ProxyClass` class, which yields the decltype for the proxy class. * Template classes that are of `struct` type are now also instances of the `Struct` class. * Template classes that are of `union` type are now also instances of the `Union` class. * A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 430521477301..6dfe40aa040c 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -5,7 +5,6 @@ * `database` local source models have been added for the Beego ORM package. * `database` local source models have been added for the `github.com/jmoiron/sqlx` package. * Added `database` source models for database methods from the `gorm.io/gorm` package. -` * `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. ## 3.0.1 diff --git a/go/ql/lib/change-notes/released/3.0.2.md b/go/ql/lib/change-notes/released/3.0.2.md index 8301be3230b0..41623ae406e0 100644 --- a/go/ql/lib/change-notes/released/3.0.2.md +++ b/go/ql/lib/change-notes/released/3.0.2.md @@ -5,5 +5,4 @@ * `database` local source models have been added for the Beego ORM package. * `database` local source models have been added for the `github.com/jmoiron/sqlx` package. * Added `database` source models for database methods from the `gorm.io/gorm` package. -` * `database` local source models have been added for the `database/sql` and `database/sql/driver` packages.