diff --git a/swift/ql/src/change-notes/2023-11-06-command-injection.md b/swift/ql/src/change-notes/2023-11-06-command-injection.md
new file mode 100644
index 000000000000..0ad3340c7cfc
--- /dev/null
+++ b/swift/ql/src/change-notes/2023-11-06-command-injection.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+---
+
+* Added new query "System command built from user-controlled sources" (`swift/command-line-injection`) for Swift. This query detects system commands built from user-controlled sources without sufficient validation. The query was previously [contributed to the 'experimental' directory by @maikypedia](https://github.com/github/codeql/pull/13726) but will now run by default for all code scanning users.
diff --git a/swift/ql/src/experimental/Security/CWE-078/CommandInjection.qhelp b/swift/ql/src/queries/Security/CWE-078/CommandInjection.qhelp
similarity index 100%
rename from swift/ql/src/experimental/Security/CWE-078/CommandInjection.qhelp
rename to swift/ql/src/queries/Security/CWE-078/CommandInjection.qhelp
diff --git a/swift/ql/src/experimental/Security/CWE-078/CommandInjection.ql b/swift/ql/src/queries/Security/CWE-078/CommandInjection.ql
similarity index 100%
rename from swift/ql/src/experimental/Security/CWE-078/CommandInjection.ql
rename to swift/ql/src/queries/Security/CWE-078/CommandInjection.ql
diff --git a/swift/ql/src/experimental/Security/CWE-078/CommandInjectionBad.swift b/swift/ql/src/queries/Security/CWE-078/CommandInjectionBad.swift
similarity index 100%
rename from swift/ql/src/experimental/Security/CWE-078/CommandInjectionBad.swift
rename to swift/ql/src/queries/Security/CWE-078/CommandInjectionBad.swift
diff --git a/swift/ql/src/experimental/Security/CWE-078/CommandInjectionGood.swift b/swift/ql/src/queries/Security/CWE-078/CommandInjectionGood.swift
similarity index 100%
rename from swift/ql/src/experimental/Security/CWE-078/CommandInjectionGood.swift
rename to swift/ql/src/queries/Security/CWE-078/CommandInjectionGood.swift
diff --git a/swift/ql/test/query-tests/Security/CWE-078/CommandInjection.qlref b/swift/ql/test/query-tests/Security/CWE-078/CommandInjection.qlref
index 3556b36b1857..87be59af70b3 100644
--- a/swift/ql/test/query-tests/Security/CWE-078/CommandInjection.qlref
+++ b/swift/ql/test/query-tests/Security/CWE-078/CommandInjection.qlref
@@ -1 +1 @@
-experimental/Security/CWE-078/CommandInjection.ql
\ No newline at end of file
+queries/Security/CWE-078/CommandInjection.ql
\ No newline at end of file