From bfb91e95e360bd931996e53f9eb25eddd403a99d Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 27 May 2025 17:22:05 +0000 Subject: [PATCH] Release preparation for version 2.21.4 --- actions/ql/lib/CHANGELOG.md | 4 ++++ .../ql/lib/change-notes/released/0.4.10.md | 3 +++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 6 +++++ .../0.6.2.md} | 7 +++--- actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 24 +++++++++++++++++++ .../2025-05-15-class-aggregate-literals.md | 4 ---- .../2025-05-16-array-aggregate-literals.md | 4 ---- .../change-notes/2025-05-16-wmain-support.md | 4 ---- ...25-05-18-2025-May-outdated-deprecations.md | 9 ------- .../2025-05-23-windows-sources.md | 6 ----- .../2025-05-27-windows-sources-2.md | 4 ---- cpp/ql/lib/change-notes/released/5.0.0.md | 23 ++++++++++++++++++ cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 6 +++++ .../1.4.1.md} | 9 +++---- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.41.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.41.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 6 +++++ .../5.1.7.md} | 7 +++--- csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 9 +++++++ .../2025-04-10-uncontrolled-format-string.md | 4 ---- .../2025-05-15-gethashcode-is-not-defined.md | 4 ---- .../2025-05-16-hardcoded-credentials.md | 4 ---- .../2025-05-22-missed-readonly-modifier.md | 4 ---- csharp/ql/src/change-notes/released/1.2.1.md | 8 +++++++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 4 ++++ go/ql/lib/change-notes/released/4.2.6.md | 3 +++ go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 6 +++++ .../1.2.1.md} | 7 +++--- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 7 ++++++ ...2025-05-22-spring-request-mapping-value.md | 4 ---- .../7.3.0.md} | 8 ++++--- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 6 +++++ .../1.5.1.md} | 7 +++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 +++++ .../2.6.4.md} | 7 +++--- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 +++++ .../1.6.1.md} | 7 +++--- javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 6 +++++ .../4.0.8.md} | 6 ++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 6 +++++ .../1.5.1.md} | 7 +++--- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 12 ++++++++++ ...5-13-captured-variables-live-more-often.md | 4 ---- .../4.1.7.md} | 11 ++++++--- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 6 +++++ .../1.3.1.md} | 7 +++--- ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 4 ++++ rust/ql/lib/change-notes/released/0.1.9.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 +- rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 4 ++++ rust/ql/src/change-notes/released/0.1.9.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 +- rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ++++ .../change-notes/released/2.0.8.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 ++++ .../dataflow/change-notes/released/2.0.8.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.24.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/quantum/CHANGELOG.md | 4 ++++ shared/quantum/change-notes/released/0.0.2.md | 3 +++ shared/quantum/codeql-pack.release.yml | 2 +- shared/quantum/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.24.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 6 +++++ .../2.0.0.md} | 7 +++--- shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/1.0.24.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ .../typeflow/change-notes/released/1.0.24.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typeinference/CHANGELOG.md | 4 ++++ .../change-notes/released/0.0.5.md | 3 +++ shared/typeinference/codeql-pack.release.yml | 2 +- shared/typeinference/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../change-notes/released/2.0.8.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.24.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.11.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.24.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.24.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 17 +++++++++++++ .../2025-05-14-type_value_expr_cfg.md | 4 ---- .../change-notes/2025-05-27-swift.6.1.1.md | 5 ---- .../5.0.0.md} | 12 +++++++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 6 +++++ .../1.1.4.md} | 7 +++--- swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 174 files changed, 483 insertions(+), 190 deletions(-) create mode 100644 actions/ql/lib/change-notes/released/0.4.10.md rename actions/ql/src/change-notes/{2025-05-14-minimal-permission-for-add-to-project.md => released/0.6.2.md} (84%) delete mode 100644 cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-16-wmain-support.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-23-windows-sources.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md create mode 100644 cpp/ql/lib/change-notes/released/5.0.0.md rename cpp/ql/src/change-notes/{2025-05-14-openssl-sqlite-models.md => released/1.4.1.md} (65%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md rename csharp/ql/lib/change-notes/{2025-05-14-dotnet-models.md => released/5.1.7.md} (78%) delete mode 100644 csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md delete mode 100644 csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md delete mode 100644 csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md delete mode 100644 csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md create mode 100644 csharp/ql/src/change-notes/released/1.2.1.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.24.md create mode 100644 go/ql/lib/change-notes/released/4.2.6.md rename go/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.2.1.md} (64%) delete mode 100644 java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md rename java/ql/lib/change-notes/{2025-05-16-shared-basicblocks.md => released/7.3.0.md} (72%) rename java/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.5.1.md} (67%) rename javascript/ql/lib/change-notes/{2025-04-29-combined-es6-func.md => released/2.6.4.md} (73%) rename javascript/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.6.1.md} (73%) create mode 100644 misc/suite-helpers/change-notes/released/1.0.24.md rename python/ql/lib/change-notes/{2025-04-30-extract-hidden-files-by-default.md => released/4.0.8.md} (93%) rename python/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.5.1.md} (64%) delete mode 100644 ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md rename ruby/ql/lib/change-notes/{2025-05-02-ruby-printast-order-fix.md => released/4.1.7.md} (68%) rename ruby/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.3.1.md} (64%) create mode 100644 rust/ql/lib/change-notes/released/0.1.9.md create mode 100644 rust/ql/src/change-notes/released/0.1.9.md create mode 100644 shared/controlflow/change-notes/released/2.0.8.md create mode 100644 shared/dataflow/change-notes/released/2.0.8.md create mode 100644 shared/mad/change-notes/released/1.0.24.md create mode 100644 shared/quantum/change-notes/released/0.0.2.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.24.md create mode 100644 shared/regex/change-notes/released/1.0.24.md rename shared/ssa/change-notes/{2025-05-23-guards-interface.md => released/2.0.0.md} (87%) create mode 100644 shared/threat-models/change-notes/released/1.0.24.md create mode 100644 shared/tutorial/change-notes/released/1.0.24.md create mode 100644 shared/typeflow/change-notes/released/1.0.24.md create mode 100644 shared/typeinference/change-notes/released/0.0.5.md create mode 100644 shared/typetracking/change-notes/released/2.0.8.md create mode 100644 shared/typos/change-notes/released/1.0.24.md create mode 100644 shared/util/change-notes/released/2.0.11.md create mode 100644 shared/xml/change-notes/released/1.0.24.md create mode 100644 shared/yaml/change-notes/released/1.0.24.md delete mode 100644 swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md delete mode 100644 swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md rename swift/ql/lib/change-notes/{2025-05-18-2025-May-outdated-deprecations.md => released/5.0.0.md} (74%) rename swift/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.1.4.md} (71%) diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 16262bfaa849..466440c3e33a 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.10 + +No user-facing changes. + ## 0.4.9 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.10.md b/actions/ql/lib/change-notes/released/0.4.10.md new file mode 100644 index 000000000000..9ae55e0ca34d --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.10.md @@ -0,0 +1,3 @@ +## 0.4.10 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index c898a5bfdcdf..e0c0d3e4c2ae 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.9 +lastReleaseVersion: 0.4.10 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 6e9a94292d02..c500ec3617b9 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.10-dev +version: 0.4.10 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 5779691947e4..687df395d28b 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.6.2 + +### Minor Analysis Improvements + +* The query `actions/missing-workflow-permissions` is now aware of the minimal permissions needed for the actions `deploy-pages`, `delete-package-versions`, `ai-inference`. This should lead to better alert messages and better fix suggestions. + ## 0.6.1 No user-facing changes. diff --git a/actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md b/actions/ql/src/change-notes/released/0.6.2.md similarity index 84% rename from actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md rename to actions/ql/src/change-notes/released/0.6.2.md index 8d6c87fe7a76..062fb0f6f91e 100644 --- a/actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md +++ b/actions/ql/src/change-notes/released/0.6.2.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.6.2 + +### Minor Analysis Improvements + * The query `actions/missing-workflow-permissions` is now aware of the minimal permissions needed for the actions `deploy-pages`, `delete-package-versions`, `ai-inference`. This should lead to better alert messages and better fix suggestions. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 80fb0899f645..5501a2a1cc59 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.1 +lastReleaseVersion: 0.6.2 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 49f4f30f7da2..5c2a1dfbb1f5 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.2-dev +version: 0.6.2 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 4ad53d108e26..67339c22ef0b 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. +* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. +* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. + +### New Features + +* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. +* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. +* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. +* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. +* Added support for `wmain` as part of the ArgvSource model. + +### Bug Fixes + +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. + ## 4.3.1 ### Bug Fixes diff --git a/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md b/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md deleted file mode 100644 index ea821d7d48d6..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md b/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md deleted file mode 100644 index a1aec0a695a7..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md b/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md deleted file mode 100644 index bdc369bfeddc..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added support for `wmain` as part of the ArgvSource model. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md b/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md deleted file mode 100644 index b1a31ea6eb5a..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md +++ /dev/null @@ -1,9 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. -* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. -* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. diff --git a/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md b/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md deleted file mode 100644 index e07dcbe85988..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- -* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. -* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. -* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. diff --git a/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md b/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md deleted file mode 100644 index 423a1a424f9d..000000000000 --- a/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/5.0.0.md b/cpp/ql/lib/change-notes/released/5.0.0.md new file mode 100644 index 000000000000..212cb2bdd962 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/5.0.0.md @@ -0,0 +1,23 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. +* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. +* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. + +### New Features + +* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. +* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. +* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. +* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. +* Added support for `wmain` as part of the ArgvSource model. + +### Bug Fixes + +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 70ac3707fcda..c9e54136ca5c 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.1 +lastReleaseVersion: 5.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index e15623e2ddb9..f5c883018959 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 4.3.2-dev +version: 5.0.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index f9880ce57641..49bf1f975eea 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.4.1 + +### Minor Analysis Improvements + +* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. + ## 1.4.0 ### Query Metadata Changes diff --git a/cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md b/cpp/ql/src/change-notes/released/1.4.1.md similarity index 65% rename from cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md rename to cpp/ql/src/change-notes/released/1.4.1.md index c03bd600ac91..7d1ba66b92ed 100644 --- a/cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md +++ b/cpp/ql/src/change-notes/released/1.4.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. \ No newline at end of file +## 1.4.1 + +### Minor Analysis Improvements + +* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index b8b2e97d5086..43ccf4467bed 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 07c7cb322495..aa04ab588e40 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.4.1-dev +version: 1.4.1 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index f177ccf403e3..0a441eeacb20 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.41 + +No user-facing changes. + ## 1.7.40 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md new file mode 100644 index 000000000000..b99dc457ba95 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md @@ -0,0 +1,3 @@ +## 1.7.41 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 47c67a0a4d32..2eee1633d769 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.40 +lastReleaseVersion: 1.7.41 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 6c3519f47858..e4e790c02b49 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.41-dev +version: 1.7.41 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index f177ccf403e3..0a441eeacb20 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.41 + +No user-facing changes. + ## 1.7.40 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md new file mode 100644 index 000000000000..b99dc457ba95 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md @@ -0,0 +1,3 @@ +## 1.7.41 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 47c67a0a4d32..2eee1633d769 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.40 +lastReleaseVersion: 1.7.41 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 1cfbcb1f030a..68c2a91ba496 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.41-dev +version: 1.7.41 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 47503fa222ed..1fcecc7f8e9b 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 5.1.7 + +### Minor Analysis Improvements + +* The generated Models as Data (MaD) models for .NET 9 Runtime have been updated and are now more precise (due to a recent model generator improvement). + ## 5.1.6 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md b/csharp/ql/lib/change-notes/released/5.1.7.md similarity index 78% rename from csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md rename to csharp/ql/lib/change-notes/released/5.1.7.md index c45cce859826..2cc0418ad62c 100644 --- a/csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md +++ b/csharp/ql/lib/change-notes/released/5.1.7.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 5.1.7 + +### Minor Analysis Improvements + * The generated Models as Data (MaD) models for .NET 9 Runtime have been updated and are now more precise (due to a recent model generator improvement). diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 5ddeeed69fc2..f26524e1fd9a 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.1.6 +lastReleaseVersion: 5.1.7 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 3cfd38613775..6f5c0b15f3a9 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.1.7-dev +version: 5.1.7 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index a73c77f224f7..b2384df0d06f 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,12 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. +* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. +* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. +* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. + ## 1.2.0 ### Query Metadata Changes diff --git a/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md b/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md deleted file mode 100644 index ed9805f6ecef..000000000000 --- a/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. diff --git a/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md b/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md deleted file mode 100644 index 2d8c5c1c56e0..000000000000 --- a/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. diff --git a/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md deleted file mode 100644 index 6255db9c199f..000000000000 --- a/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. diff --git a/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md b/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md deleted file mode 100644 index ee3d60fe4ff8..000000000000 --- a/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. diff --git a/csharp/ql/src/change-notes/released/1.2.1.md b/csharp/ql/src/change-notes/released/1.2.1.md new file mode 100644 index 000000000000..2751be1db8ae --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.2.1.md @@ -0,0 +1,8 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. +* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. +* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. +* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 75430e73d1c4..73dd403938c9 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 1.2.1 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 7f4043b2c07b..59800dabbdb8 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.2.1-dev +version: 1.2.1 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index c3254e1caad7..a684ef060a5c 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.24.md b/go/ql/consistency-queries/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 7c8b45152648..ce75cf33047b 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.24-dev +version: 1.0.24 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index b6031842a21a..58e70d0c2bd8 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.2.6 + +No user-facing changes. + ## 4.2.5 No user-facing changes. diff --git a/go/ql/lib/change-notes/released/4.2.6.md b/go/ql/lib/change-notes/released/4.2.6.md new file mode 100644 index 000000000000..4b76e98c68b3 --- /dev/null +++ b/go/ql/lib/change-notes/released/4.2.6.md @@ -0,0 +1,3 @@ +## 4.2.6 + +No user-facing changes. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 1821397188ee..2005a7a7f17d 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.2.5 +lastReleaseVersion: 4.2.6 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 3451f49c2dc5..49a4a809f13e 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.2.6-dev +version: 4.2.6 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index a90fa7b70345..794f600ad3e0 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The query `go/hardcoded-credentials` has been removed from all query suites. + ## 1.2.0 ### Query Metadata Changes diff --git a/go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/go/ql/src/change-notes/released/1.2.1.md similarity index 64% rename from go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to go/ql/src/change-notes/released/1.2.1.md index b25a9b3d056b..d96e9efc3658 100644 --- a/go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/go/ql/src/change-notes/released/1.2.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.2.1 + +### Minor Analysis Improvements + * The query `go/hardcoded-credentials` has been removed from all query suites. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 75430e73d1c4..73dd403938c9 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 1.2.1 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 032ac3359028..20e37c247ef4 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.2.1-dev +version: 1.2.1 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 412521919b9f..7391228e4836 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 7.3.0 + +### Deprecated APIs + +* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. +* Java now uses the shared `BasicBlock` library. This means that the names of several member predicates have been changed to align with the names used in other languages. The old predicates have been deprecated. The `BasicBlock` class itself no longer extends `ControlFlowNode` - the predicate `getFirstNode` can be used to fix any QL code that somehow relied on this. + ## 7.2.0 ### New Features diff --git a/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md b/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md deleted file mode 100644 index 8b7effc535de..000000000000 --- a/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. diff --git a/java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md b/java/ql/lib/change-notes/released/7.3.0.md similarity index 72% rename from java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md rename to java/ql/lib/change-notes/released/7.3.0.md index e71ae5c13175..a40049582ef6 100644 --- a/java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md +++ b/java/ql/lib/change-notes/released/7.3.0.md @@ -1,4 +1,6 @@ ---- -category: deprecated ---- +## 7.3.0 + +### Deprecated APIs + +* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. * Java now uses the shared `BasicBlock` library. This means that the names of several member predicates have been changed to align with the names used in other languages. The old predicates have been deprecated. The `BasicBlock` class itself no longer extends `ControlFlowNode` - the predicate `getFirstNode` can be used to fix any QL code that somehow relied on this. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index fda9ea165fc5..2b9b871fffa7 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.2.0 +lastReleaseVersion: 7.3.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 8e1e06ab6b5d..44271dee46b4 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.2.1-dev +version: 7.3.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 286ed1123af3..fa038d728e6e 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.5.1 + +### Minor Analysis Improvements + +* The query `java/hardcoded-credential-api-call` has been removed from all query suites. + ## 1.5.0 ### Query Metadata Changes diff --git a/java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/java/ql/src/change-notes/released/1.5.1.md similarity index 67% rename from java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to java/ql/src/change-notes/released/1.5.1.md index 18340ca87745..23e49bba7294 100644 --- a/java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/java/ql/src/change-notes/released/1.5.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.5.1 + +### Minor Analysis Improvements + * The query `java/hardcoded-credential-api-call` has been removed from all query suites. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 639f80c43417..c5775c46013c 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.0 +lastReleaseVersion: 1.5.1 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index be53e6c8c0bf..2938ce64cb3a 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.5.1-dev +version: 1.5.1 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 2d7716b8393d..91b86700ed4e 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.6.4 + +### Minor Analysis Improvements + +* Improved analysis for `ES6 classes` mixed with `function prototypes`, leading to more accurate call graph resolution. + ## 2.6.3 ### Minor Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md b/javascript/ql/lib/change-notes/released/2.6.4.md similarity index 73% rename from javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md rename to javascript/ql/lib/change-notes/released/2.6.4.md index 2303d3d8c629..90658374635e 100644 --- a/javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md +++ b/javascript/ql/lib/change-notes/released/2.6.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 2.6.4 + +### Minor Analysis Improvements + * Improved analysis for `ES6 classes` mixed with `function prototypes`, leading to more accurate call graph resolution. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index e2457adb03c7..ac7556476954 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.3 +lastReleaseVersion: 2.6.4 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 87fb92c5bafb..d28403132c44 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.4-dev +version: 2.6.4 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index bd5cb345793e..95b3d48ac2f9 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.6.1 + +### Minor Analysis Improvements + +* The queries `js/hardcoded-credentials` and `js/password-in-configuration-file` have been removed from all query suites. + ## 1.6.0 ### Query Metadata Changes diff --git a/javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/javascript/ql/src/change-notes/released/1.6.1.md similarity index 73% rename from javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to javascript/ql/src/change-notes/released/1.6.1.md index 99af2e2c448d..b66009e765f5 100644 --- a/javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/javascript/ql/src/change-notes/released/1.6.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.6.1 + +### Minor Analysis Improvements + * The queries `js/hardcoded-credentials` and `js/password-in-configuration-file` have been removed from all query suites. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index c4f0b07d5336..ef7a789e0cf1 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.0 +lastReleaseVersion: 1.6.1 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 515ea8a3abda..986f2be84e64 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.6.1-dev +version: 1.6.1 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index d65ced8b4c71..1959582a1716 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.24.md b/misc/suite-helpers/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index fa44a2706655..e19aa4923af7 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.24-dev +version: 1.0.24 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 33813cf94e46..36d7cdbcc2fc 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 4.0.8 + +### Minor Analysis Improvements + +- The Python extractor now extracts files in hidden directories by default. If you would like to skip files in hidden directories, add `paths-ignore: ["**/.*/**"]` to your [Code Scanning config](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#specifying-directories-to-scan). If you would like to skip all hidden files, you can use `paths-ignore: ["**/.*"]`. When using the CodeQL CLI for extraction, specify the configuration (creating the configuration file if necessary) using the `--codescanning-config` option. + ## 4.0.7 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md b/python/ql/lib/change-notes/released/4.0.8.md similarity index 93% rename from python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md rename to python/ql/lib/change-notes/released/4.0.8.md index fcbb0a209ce6..a87623b25b52 100644 --- a/python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md +++ b/python/ql/lib/change-notes/released/4.0.8.md @@ -1,5 +1,5 @@ ---- -category: minorAnalysis ---- +## 4.0.8 + +### Minor Analysis Improvements - The Python extractor now extracts files in hidden directories by default. If you would like to skip files in hidden directories, add `paths-ignore: ["**/.*/**"]` to your [Code Scanning config](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#specifying-directories-to-scan). If you would like to skip all hidden files, you can use `paths-ignore: ["**/.*"]`. When using the CodeQL CLI for extraction, specify the configuration (creating the configuration file if necessary) using the `--codescanning-config` option. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index bf65f0dc10b1..36a2330377d9 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.7 +lastReleaseVersion: 4.0.8 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index c98ee1e15d47..e328f386c566 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.8-dev +version: 4.0.8 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index c449304f0da1..a65d9f846414 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.5.1 + +### Minor Analysis Improvements + +* The query `py/hardcoded-credentials` has been removed from all query suites. + ## 1.5.0 ### Query Metadata Changes diff --git a/python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/python/ql/src/change-notes/released/1.5.1.md similarity index 64% rename from python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to python/ql/src/change-notes/released/1.5.1.md index ee550ce449b0..3b04255f33ab 100644 --- a/python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/python/ql/src/change-notes/released/1.5.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.5.1 + +### Minor Analysis Improvements + * The query `py/hardcoded-credentials` has been removed from all query suites. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 639f80c43417..c5775c46013c 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.0 +lastReleaseVersion: 1.5.1 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 6e181439ee01..d29907ecbe8d 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.5.1-dev +version: 1.5.1 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 4d3dfc9c4360..f637009e8a18 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.1.7 + +### Minor Analysis Improvements + +* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. + +### Bug Fixes + +### Bug Fixes + +* The Ruby printAst.qll library now orders AST nodes slightly differently: child nodes that do not literally appear in the source code, but whose parent nodes do, are assigned a deterministic order based on a combination of source location and logical order within the parent. This fixes the non-deterministic ordering that sometimes occurred depending on evaluation order. The effect may also be visible in downstream uses of the printAst library, such as the AST view in the VSCode extension. + ## 4.1.6 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md b/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md deleted file mode 100644 index 3a0878e6553c..000000000000 --- a/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. \ No newline at end of file diff --git a/ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md b/ruby/ql/lib/change-notes/released/4.1.7.md similarity index 68% rename from ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md rename to ruby/ql/lib/change-notes/released/4.1.7.md index b71b60c22b3d..00625c5c5d8d 100644 --- a/ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md +++ b/ruby/ql/lib/change-notes/released/4.1.7.md @@ -1,6 +1,11 @@ ---- -category: fix ---- +## 4.1.7 + +### Minor Analysis Improvements + +* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. + +### Bug Fixes + ### Bug Fixes * The Ruby printAst.qll library now orders AST nodes slightly differently: child nodes that do not literally appear in the source code, but whose parent nodes do, are assigned a deterministic order based on a combination of source location and logical order within the parent. This fixes the non-deterministic ordering that sometimes occurred depending on evaluation order. The effect may also be visible in downstream uses of the printAst library, such as the AST view in the VSCode extension. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 8b32e3bae01c..6a89491cdb81 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.1.6 +lastReleaseVersion: 4.1.7 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 2548f8c10745..a13854cf27a8 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 4.1.7-dev +version: 4.1.7 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 0a3ce10b979c..3bf0a2d63120 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.3.1 + +### Minor Analysis Improvements + +* The query `rb/hardcoded-credentials` has been removed from all query suites. + ## 1.3.0 ### Query Metadata Changes diff --git a/ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/ruby/ql/src/change-notes/released/1.3.1.md similarity index 64% rename from ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to ruby/ql/src/change-notes/released/1.3.1.md index 684b1b3ea78f..8d892f72ed06 100644 --- a/ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/ruby/ql/src/change-notes/released/1.3.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.3.1 + +### Minor Analysis Improvements + * The query `rb/hardcoded-credentials` has been removed from all query suites. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index ec16350ed6fd..e71b6d081f15 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.0 +lastReleaseVersion: 1.3.1 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index ed987a474545..7247e94124a9 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.3.1-dev +version: 1.3.1 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 3000a1098cc4..f37d7ac4bae7 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.9 + +No user-facing changes. + ## 0.1.8 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.9.md b/rust/ql/lib/change-notes/released/0.1.9.md new file mode 100644 index 000000000000..e93006d794f2 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.9.md @@ -0,0 +1,3 @@ +## 0.1.9 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 3136ea4a1cc9..1425c0edf7f8 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.8 +lastReleaseVersion: 0.1.9 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index ce213d8ebbad..17dea2358509 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.9-dev +version: 0.1.9 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index a7c23fbfd30a..8b870ea5f99d 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.9 + +No user-facing changes. + ## 0.1.8 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.9.md b/rust/ql/src/change-notes/released/0.1.9.md new file mode 100644 index 000000000000..e93006d794f2 --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.9.md @@ -0,0 +1,3 @@ +## 0.1.9 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 3136ea4a1cc9..1425c0edf7f8 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.8 +lastReleaseVersion: 0.1.9 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 3ce216f0a2d7..ddd0cee92d52 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.9-dev +version: 0.1.9 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 1aab9a2eebaf..8748a58b0c45 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.8.md b/shared/controlflow/change-notes/released/2.0.8.md new file mode 100644 index 000000000000..4d6867c721bf --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 08d5e9594498..7ffb2d9f65be 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 83f9b6f67a42..ea02e74b8d4f 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 36d289f7f049..2fe45acb03cc 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.8.md b/shared/dataflow/change-notes/released/2.0.8.md new file mode 100644 index 000000000000..4d6867c721bf --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 08d5e9594498..7ffb2d9f65be 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 3c70d1d8c2d3..9fa1e52fdb37 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 5efa3ce9aec8..3c432d1383f7 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.24.md b/shared/mad/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 8cbab3cbcd63..c06bf28103e9 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index 59b60bad0f37..7668a5ba39d5 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.2 + +No user-facing changes. + ## 0.0.1 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.2.md b/shared/quantum/change-notes/released/0.0.2.md new file mode 100644 index 000000000000..5ab250998ed4 --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.2.md @@ -0,0 +1,3 @@ +## 0.0.2 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index c6933410b71c..55dc06fbd76a 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.1 +lastReleaseVersion: 0.0.2 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 4abda024832b..e8f696ad279e 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.2-dev +version: 0.0.2 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 75bb80c6db72..5716e3329200 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.24.md b/shared/rangeanalysis/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index d551bb79db47..b9165e57d301 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 59bbd8cf93b5..36cbdcef2abc 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.24.md b/shared/regex/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 41c9b1ba0439..84c4b249f579 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 509445eb6b13..85891c547617 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.0 + +### Breaking Changes + +* Adjusted the Guards interface in the SSA data flow integration to distinguish `hasBranchEdge` from `controlsBranchEdge`. Any breakage can be fixed by implementing one with the other as a reasonable fallback solution. + ## 1.1.2 No user-facing changes. diff --git a/shared/ssa/change-notes/2025-05-23-guards-interface.md b/shared/ssa/change-notes/released/2.0.0.md similarity index 87% rename from shared/ssa/change-notes/2025-05-23-guards-interface.md rename to shared/ssa/change-notes/released/2.0.0.md index cc8d76372f6a..39ac6d68707b 100644 --- a/shared/ssa/change-notes/2025-05-23-guards-interface.md +++ b/shared/ssa/change-notes/released/2.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Adjusted the Guards interface in the SSA data flow integration to distinguish `hasBranchEdge` from `controlsBranchEdge`. Any breakage can be fixed by implementing one with the other as a reasonable fallback solution. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 53ab127707fc..0abe6ccede0f 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.2 +lastReleaseVersion: 2.0.0 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index fe5fa023a96c..03bab1e16506 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.1.3-dev +version: 2.0.0 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index c3254e1caad7..a684ef060a5c 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.24.md b/shared/threat-models/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index a86c29ceba3c..328719e2a0d9 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.24-dev +version: 1.0.24 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 247d9be86a5e..b0f9b01001b6 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.24.md b/shared/tutorial/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index a0aa1a8b3aed..b9b63085e1f7 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index cad6ded5224f..7f8c43e4544f 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.24.md b/shared/typeflow/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 123e7a98891f..5b91c29a4de7 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index 4ffbff1e0c4e..9b269441c000 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.5 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.5.md b/shared/typeinference/change-notes/released/0.0.5.md new file mode 100644 index 000000000000..766ec2723b56 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.5.md @@ -0,0 +1,3 @@ +## 0.0.5 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index ec411a674bcd..bb45a1ab0182 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index bbfe2ad66157..93bbac0b367c 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.5-dev +version: 0.0.5 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 16294923597f..731844b4af36 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.8.md b/shared/typetracking/change-notes/released/2.0.8.md new file mode 100644 index 000000000000..4d6867c721bf --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 08d5e9594498..7ffb2d9f65be 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index eef6fe52e662..82a30f6cec3c 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index c7ff1a773da2..a81f798d14cb 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.24.md b/shared/typos/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 93833e02e664..37b286426850 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index f6f7838bc2ee..70486f1eeb4c 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.11 + +No user-facing changes. + ## 2.0.10 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.11.md b/shared/util/change-notes/released/2.0.11.md new file mode 100644 index 000000000000..b3d110bcba50 --- /dev/null +++ b/shared/util/change-notes/released/2.0.11.md @@ -0,0 +1,3 @@ +## 2.0.11 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 96ea0220a690..3cbe73b4cadc 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.10 +lastReleaseVersion: 2.0.11 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index e4cfbd97b6ec..7da687aff4ef 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.11-dev +version: 2.0.11 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index bdb83dc88300..43afc43456bd 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.24.md b/shared/xml/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 73910c05517a..790a260ddad7 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 28ca258e0d54..a324870b225c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.24.md b/shared/yaml/change-notes/released/1.0.24.md new file mode 100644 index 000000000000..379b5e336576 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 0f96ba41d168..d08329a98fc8 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index dabb1a335057..56e0c9d83e03 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 1c9326d76e89..fe8bfd82364b 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,20 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `parseContent` predicate from the `ExternalFlow.qll`. +* Deleted the deprecated `hasLocationInfo` predicate from the `DataFlowPublic.qll`. +* Deleted the deprecated `SummaryComponent` class from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponentStack` class from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponent` module from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponentStack` module from the `FlowSummary.qll`. +* Deleted the deprecated `RequiredSummaryComponentStack` class from the `FlowSummary.qll`. + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.1. +* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library + ## 4.3.0 ### New Features diff --git a/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md b/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md deleted file mode 100644 index aa3282d33263..000000000000 --- a/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library diff --git a/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md b/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md deleted file mode 100644 index 19101e5b615b..000000000000 --- a/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md +++ /dev/null @@ -1,5 +0,0 @@ - ---- -category: minorAnalysis ---- -* Updated to allow analysis of Swift 6.1.1. diff --git a/swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md b/swift/ql/lib/change-notes/released/5.0.0.md similarity index 74% rename from swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/5.0.0.md index 072e6bba5cda..7215a40e3960 100644 --- a/swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/5.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 5.0.0 + +### Breaking Changes + * Deleted the deprecated `parseContent` predicate from the `ExternalFlow.qll`. * Deleted the deprecated `hasLocationInfo` predicate from the `DataFlowPublic.qll`. * Deleted the deprecated `SummaryComponent` class from the `FlowSummary.qll`. @@ -8,3 +9,8 @@ category: breaking * Deleted the deprecated `SummaryComponent` module from the `FlowSummary.qll`. * Deleted the deprecated `SummaryComponentStack` module from the `FlowSummary.qll`. * Deleted the deprecated `RequiredSummaryComponentStack` class from the `FlowSummary.qll`. + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.1. +* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index c46c103a0bd7..c9e54136ca5c 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.0 +lastReleaseVersion: 5.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index ebc4b83f267e..183fbd254582 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 4.3.1-dev +version: 5.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 7910cf095ce7..7faf32ba8417 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.4 + +### Minor Analysis Improvements + +* The queries `swift/hardcoded-key` and `swift/constant-password` have been removed from all query suites. + ## 1.1.3 No user-facing changes. diff --git a/swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/swift/ql/src/change-notes/released/1.1.4.md similarity index 71% rename from swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to swift/ql/src/change-notes/released/1.1.4.md index cc524d8c34da..2a8b2c9cda66 100644 --- a/swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/swift/ql/src/change-notes/released/1.1.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.1.4 + +### Minor Analysis Improvements + * The queries `swift/hardcoded-key` and `swift/constant-password` have been removed from all query suites. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 35e710ab1bf0..26cbcd3f123b 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.3 +lastReleaseVersion: 1.1.4 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 7f727988f7c3..2768bcab8fde 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.1.4-dev +version: 1.1.4 groups: - swift - queries