From b41835a7d9e8ef89a020ba11b30eebea23a8531f Mon Sep 17 00:00:00 2001 From: Chuan-kai Lin Date: Thu, 30 May 2024 09:25:15 -0700 Subject: [PATCH 1/6] Revert "Release preparation for version 2.17.4" --- cpp/ql/lib/CHANGELOG.md | 6 ------ .../{released/1.0.0.md => 2024-05-23-Version1.md} | 7 +++---- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 11 ----------- .../2024-05-19-avoid-reporting-static-variable.md | 4 ++++ ...se-of-unique-pointer-after-lifetime-ends-fp.md | 4 ++++ .../ql/src/change-notes/2024-05-23-Version1.md | 7 +++---- cpp/ql/src/change-notes/released/1.0.0.md | 10 ---------- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ---- .../lib/change-notes/released/1.7.17.md | 3 --- .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ---- .../src/change-notes/released/1.7.17.md | 3 --- .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md} | 7 +++---- csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 6 ------ .../ql/src/change-notes/2024-05-23-Version1.md | 7 +++---- csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ go/ql/consistency-queries/codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 12 ------------ .../2024-05-09-model-append-copy-max-min.md | 4 ++++ ...-incorrect-integer-conversion-defined-types.md | 4 ++++ .../2024-05-16-read-store-steps-named-types.md | 4 ++++ go/ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ go/ql/lib/change-notes/released/1.0.0.md | 11 ----------- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 10 ---------- .../2024-05-14-incorrect-integer-conversion.md | 4 ++++ go/ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ go/ql/src/change-notes/released/1.0.0.md | 9 --------- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/automodel/src/CHANGELOG.md | 6 ------ .../src/change-notes/2024-05-23-Version1.md | 4 ++++ .../automodel/src/change-notes/released/1.0.0.md | 5 ----- java/ql/automodel/src/codeql-pack.release.yml | 2 +- java/ql/automodel/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 14 -------------- .../2024-05-15-static-field-side-effect.md | 4 ++++ .../2024-05-16-gradle-jdk-detection.md | 4 ++++ java/ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ java/ql/lib/change-notes/released/1.0.0.md | 13 ------------- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 12 ------------ ... => 2024-05-01-remove-local-query-variants.md} | 13 +++---------- .../2024-05-22-zipslip-number-sanitizer.md | 4 ++++ java/ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ .../2024-05-23-trusted-boundary-violation.md | 4 ++++ java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 14 -------------- .../2024-05-09-sensitive-heuristics.md | 13 ++++--------- .../lib/change-notes/2024-05-21-big-ts-files.md | 4 ++++ .../ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ javascript/ql/lib/change-notes/released/1.0.0.md | 13 ------------- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 ------ .../ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ javascript/ql/src/change-notes/released/1.0.0.md | 5 ----- javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ misc/suite-helpers/change-notes/released/1.0.0.md | 5 ----- misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 15 --------------- .../2024-05-09-sensitive-heuristics.md | 4 ++++ .../2024-05-17-maD-rich-type-column.md | 4 ++++ .../2024-05-20-flask-session-interface.md | 4 ++++ python/ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ python/ql/lib/change-notes/released/1.0.0.md | 14 -------------- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 10 ---------- .../src/change-notes/2024-04-05-gradio-models.md | 4 ++++ python/ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ python/ql/src/change-notes/released/1.0.0.md | 9 --------- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 10 ---------- .../2024-05-09-sensitive-heuristics.md | 4 ++++ ruby/ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 6 ------ ruby/ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ ruby/ql/src/change-notes/released/1.0.0.md | 5 ----- ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ shared/controlflow/change-notes/released/1.0.0.md | 5 ----- shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 10 ---------- .../change-notes/2024-05-06-param-return-nodes.md | 4 ++++ .../dataflow/change-notes/2024-05-23-Version1.md | 4 ++++ shared/dataflow/change-notes/released/1.0.0.md | 9 --------- shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 6 ------ shared/mad/change-notes/2024-05-23-Version1.md | 4 ++++ shared/mad/change-notes/released/1.0.0.md | 5 ----- shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ .../rangeanalysis/change-notes/released/1.0.0.md | 5 ----- shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 6 ------ shared/regex/change-notes/2024-05-23-Version1.md | 4 ++++ shared/regex/change-notes/released/1.0.0.md | 5 ----- shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 6 ------ shared/ssa/change-notes/2024-05-23-Version1.md | 4 ++++ shared/ssa/change-notes/released/1.0.0.md | 5 ----- shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ .../threat-models/change-notes/released/1.0.0.md | 5 ----- shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 6 ------ .../tutorial/change-notes/2024-05-23-Version1.md | 4 ++++ shared/tutorial/change-notes/released/1.0.0.md | 5 ----- shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 6 ------ .../typeflow/change-notes/2024-05-23-Version1.md | 4 ++++ shared/typeflow/change-notes/released/1.0.0.md | 5 ----- shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 6 ------ .../change-notes/2024-05-23-Version1.md | 4 ++++ .../typetracking/change-notes/released/1.0.0.md | 5 ----- shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 6 ------ shared/typos/change-notes/2024-05-23-Version1.md | 4 ++++ shared/typos/change-notes/released/1.0.0.md | 5 ----- shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 6 ------ shared/util/change-notes/2024-05-23-Version1.md | 4 ++++ shared/util/change-notes/released/1.0.0.md | 5 ----- shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 6 ------ shared/xml/change-notes/2024-05-23-Version1.md | 4 ++++ shared/xml/change-notes/released/1.0.0.md | 5 ----- shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 6 ------ shared/yaml/change-notes/2024-05-23-Version1.md | 4 ++++ shared/yaml/change-notes/released/1.0.0.md | 5 ----- shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 ------ swift/ql/lib/change-notes/2024-05-23-Version1.md | 4 ++++ swift/ql/lib/change-notes/released/1.0.0.md | 5 ----- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 6 ------ swift/ql/src/change-notes/2024-05-23-Version1.md | 4 ++++ swift/ql/src/change-notes/released/1.0.0.md | 5 ----- swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 186 files changed, 273 insertions(+), 558 deletions(-) rename cpp/ql/lib/change-notes/{released/1.0.0.md => 2024-05-23-Version1.md} (82%) create mode 100644 cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md create mode 100644 cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md rename csharp/ql/lib/change-notes/released/1.0.0.md => cpp/ql/src/change-notes/2024-05-23-Version1.md (82%) delete mode 100644 cpp/ql/src/change-notes/released/1.0.0.md delete mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md delete mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md rename csharp/ql/{src/change-notes/released/1.0.0.md => lib/change-notes/2024-05-23-Version1.md} (82%) rename go/ql/consistency-queries/change-notes/released/1.0.0.md => csharp/ql/src/change-notes/2024-05-23-Version1.md (82%) create mode 100644 go/ql/consistency-queries/change-notes/2024-05-23-Version1.md create mode 100644 go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md create mode 100644 go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md create mode 100644 go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md create mode 100644 go/ql/lib/change-notes/2024-05-23-Version1.md delete mode 100644 go/ql/lib/change-notes/released/1.0.0.md create mode 100644 go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md create mode 100644 go/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 go/ql/src/change-notes/released/1.0.0.md create mode 100644 java/ql/automodel/src/change-notes/2024-05-23-Version1.md delete mode 100644 java/ql/automodel/src/change-notes/released/1.0.0.md create mode 100644 java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md create mode 100644 java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md create mode 100644 java/ql/lib/change-notes/2024-05-23-Version1.md delete mode 100644 java/ql/lib/change-notes/released/1.0.0.md rename java/ql/src/change-notes/{released/1.0.0.md => 2024-05-01-remove-local-query-variants.md} (58%) create mode 100644 java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md create mode 100644 java/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md rename ruby/ql/lib/change-notes/released/1.0.0.md => javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md (50%) create mode 100644 javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md create mode 100644 javascript/ql/lib/change-notes/2024-05-23-Version1.md delete mode 100644 javascript/ql/lib/change-notes/released/1.0.0.md create mode 100644 javascript/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 javascript/ql/src/change-notes/released/1.0.0.md create mode 100644 misc/suite-helpers/change-notes/2024-05-23-Version1.md delete mode 100644 misc/suite-helpers/change-notes/released/1.0.0.md create mode 100644 python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md create mode 100644 python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md create mode 100644 python/ql/lib/change-notes/2024-05-20-flask-session-interface.md create mode 100644 python/ql/lib/change-notes/2024-05-23-Version1.md delete mode 100644 python/ql/lib/change-notes/released/1.0.0.md create mode 100644 python/ql/src/change-notes/2024-04-05-gradio-models.md create mode 100644 python/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 python/ql/src/change-notes/released/1.0.0.md create mode 100644 ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md create mode 100644 ruby/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 ruby/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 ruby/ql/src/change-notes/released/1.0.0.md create mode 100644 shared/controlflow/change-notes/2024-05-23-Version1.md delete mode 100644 shared/controlflow/change-notes/released/1.0.0.md create mode 100644 shared/dataflow/change-notes/2024-05-06-param-return-nodes.md create mode 100644 shared/dataflow/change-notes/2024-05-23-Version1.md delete mode 100644 shared/dataflow/change-notes/released/1.0.0.md create mode 100644 shared/mad/change-notes/2024-05-23-Version1.md delete mode 100644 shared/mad/change-notes/released/1.0.0.md create mode 100644 shared/rangeanalysis/change-notes/2024-05-23-Version1.md delete mode 100644 shared/rangeanalysis/change-notes/released/1.0.0.md create mode 100644 shared/regex/change-notes/2024-05-23-Version1.md delete mode 100644 shared/regex/change-notes/released/1.0.0.md create mode 100644 shared/ssa/change-notes/2024-05-23-Version1.md delete mode 100644 shared/ssa/change-notes/released/1.0.0.md create mode 100644 shared/threat-models/change-notes/2024-05-23-Version1.md delete mode 100644 shared/threat-models/change-notes/released/1.0.0.md create mode 100644 shared/tutorial/change-notes/2024-05-23-Version1.md delete mode 100644 shared/tutorial/change-notes/released/1.0.0.md create mode 100644 shared/typeflow/change-notes/2024-05-23-Version1.md delete mode 100644 shared/typeflow/change-notes/released/1.0.0.md create mode 100644 shared/typetracking/change-notes/2024-05-23-Version1.md delete mode 100644 shared/typetracking/change-notes/released/1.0.0.md create mode 100644 shared/typos/change-notes/2024-05-23-Version1.md delete mode 100644 shared/typos/change-notes/released/1.0.0.md create mode 100644 shared/util/change-notes/2024-05-23-Version1.md delete mode 100644 shared/util/change-notes/released/1.0.0.md create mode 100644 shared/xml/change-notes/2024-05-23-Version1.md delete mode 100644 shared/xml/change-notes/released/1.0.0.md create mode 100644 shared/yaml/change-notes/2024-05-23-Version1.md delete mode 100644 shared/yaml/change-notes/released/1.0.0.md create mode 100644 swift/ql/lib/change-notes/2024-05-23-Version1.md delete mode 100644 swift/ql/lib/change-notes/released/1.0.0.md create mode 100644 swift/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 swift/ql/src/change-notes/released/1.0.0.md diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index da66014df8e5..63aa64f6f77d 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.13.1 No user-facing changes. diff --git a/cpp/ql/lib/change-notes/released/1.0.0.md b/cpp/ql/lib/change-notes/2024-05-23-Version1.md similarity index 82% rename from cpp/ql/lib/change-notes/released/1.0.0.md rename to cpp/ql/lib/change-notes/2024-05-23-Version1.md index 7c7dd01f4051..5840e51017be 100644 --- a/cpp/ql/lib/change-notes/released/1.0.0.md +++ b/cpp/ql/lib/change-notes/2024-05-23-Version1.md @@ -1,5 +1,4 @@ -## 1.0.0 - -### Breaking Changes - +--- +category: breaking +--- * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index b7eeb5b97365..92a33894b0bc 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.13.1 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 653304cedf3c..121cded7b7fb 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 1.0.0 +version: 1.0.0-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index b530e1484826..9bc62270b7e0 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,14 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean -* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. - ## 0.9.12 ### New Queries diff --git a/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md b/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md new file mode 100644 index 000000000000..837afe168a41 --- /dev/null +++ b/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. \ No newline at end of file diff --git a/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md b/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md new file mode 100644 index 000000000000..f0cf02d4eba8 --- /dev/null +++ b/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/released/1.0.0.md b/cpp/ql/src/change-notes/2024-05-23-Version1.md similarity index 82% rename from csharp/ql/lib/change-notes/released/1.0.0.md rename to cpp/ql/src/change-notes/2024-05-23-Version1.md index 7c7dd01f4051..5840e51017be 100644 --- a/csharp/ql/lib/change-notes/released/1.0.0.md +++ b/cpp/ql/src/change-notes/2024-05-23-Version1.md @@ -1,5 +1,4 @@ -## 1.0.0 - -### Breaking Changes - +--- +category: breaking +--- * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/cpp/ql/src/change-notes/released/1.0.0.md b/cpp/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index 6f9b4e6e6b10..000000000000 --- a/cpp/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,10 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean -* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index b7eeb5b97365..12f1a311ecad 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.9.12 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 9e45007445b8..f0cd27dd92ec 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.0.0 +version: 1.0.0-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 8ead253e97f0..78b1cb40f649 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.7.17 - -No user-facing changes. - ## 1.7.16 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md deleted file mode 100644 index cdbe25eaf78b..000000000000 --- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.7.17 - -No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index ac9a08123d25..15756b8a4c75 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.17 +lastReleaseVersion: 1.7.16 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 5129894985fc..4402f8c610eb 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.17 +version: 1.7.17-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 8ead253e97f0..78b1cb40f649 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.7.17 - -No user-facing changes. - ## 1.7.16 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md deleted file mode 100644 index cdbe25eaf78b..000000000000 --- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.7.17 - -No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index ac9a08123d25..15756b8a4c75 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.17 +lastReleaseVersion: 1.7.16 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index b5e75a5f357f..427e14d4a6fe 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.17 +version: 1.7.17-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 36d0a8aeec8d..01a389d99e23 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.10.1 No user-facing changes. diff --git a/csharp/ql/src/change-notes/released/1.0.0.md b/csharp/ql/lib/change-notes/2024-05-23-Version1.md similarity index 82% rename from csharp/ql/src/change-notes/released/1.0.0.md rename to csharp/ql/lib/change-notes/2024-05-23-Version1.md index 7c7dd01f4051..5840e51017be 100644 --- a/csharp/ql/src/change-notes/released/1.0.0.md +++ b/csharp/ql/lib/change-notes/2024-05-23-Version1.md @@ -1,5 +1,4 @@ -## 1.0.0 - -### Breaking Changes - +--- +category: breaking +--- * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index b7eeb5b97365..af7510b3cd65 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.10.1 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index df83381ae532..7171ec2854f0 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 1.0.0 +version: 1.0.0-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 0fa3c863ccfd..ceae06c80f2b 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.8.16 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.0.md b/csharp/ql/src/change-notes/2024-05-23-Version1.md similarity index 82% rename from go/ql/consistency-queries/change-notes/released/1.0.0.md rename to csharp/ql/src/change-notes/2024-05-23-Version1.md index 7c7dd01f4051..5840e51017be 100644 --- a/go/ql/consistency-queries/change-notes/released/1.0.0.md +++ b/csharp/ql/src/change-notes/2024-05-23-Version1.md @@ -1,5 +1,4 @@ -## 1.0.0 - -### Breaking Changes - +--- +category: breaking +--- * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index b7eeb5b97365..c735422e23a3 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.8.16 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 89dffcd2dde0..f19298f75771 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.0 +version: 1.0.0-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 8a8586a0f144..4f4b3189bb41 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.15 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md b/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index b7eeb5b97365..dff35216fc69 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.15 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 758aadeeb015..a31ff71eb018 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.0 +version: 1.0.0-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index aa95e9e46c3f..48fa34080d6a 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,15 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. -* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. -* Converted the models for the built-in functions `append`, `copy`, `max` and `min` to value flow and Models-as-Data. - ## 0.8.1 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md b/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md new file mode 100644 index 000000000000..3d7e2e9e1a66 --- /dev/null +++ b/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Converted the models for the built-in functions `append`, `copy`, `max` and `min` to value flow and Models-as-Data. diff --git a/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md b/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md new file mode 100644 index 000000000000..c3343d6e5f04 --- /dev/null +++ b/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. diff --git a/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md b/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md new file mode 100644 index 000000000000..037210c91592 --- /dev/null +++ b/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. diff --git a/go/ql/lib/change-notes/2024-05-23-Version1.md b/go/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/go/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/lib/change-notes/released/1.0.0.md b/go/ql/lib/change-notes/released/1.0.0.md deleted file mode 100644 index 4f762dd7111f..000000000000 --- a/go/ql/lib/change-notes/released/1.0.0.md +++ /dev/null @@ -1,11 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. -* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. -* Converted the models for the built-in functions `append`, `copy`, `max` and `min` to value flow and Models-as-Data. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index b7eeb5b97365..2f693f95ba69 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.8.1 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index b27f8e259bb7..9bea600fc3ce 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 1.0.0 +version: 1.0.0-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index b93f92762c9e..e32dd2f671ba 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,13 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. - ## 0.7.16 No user-facing changes. diff --git a/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md b/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md new file mode 100644 index 000000000000..b3403d092f67 --- /dev/null +++ b/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. diff --git a/go/ql/src/change-notes/2024-05-23-Version1.md b/go/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/go/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/src/change-notes/released/1.0.0.md b/go/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index c8215a5b36fc..000000000000 --- a/go/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,9 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index b7eeb5b97365..1ba18ba0a0a7 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.7.16 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 69888315a902..b7d4f3d5e74d 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.0.0 +version: 1.0.0-dev groups: - go - queries diff --git a/java/ql/automodel/src/CHANGELOG.md b/java/ql/automodel/src/CHANGELOG.md index 1ad05e3aa6d5..f088448f0680 100644 --- a/java/ql/automodel/src/CHANGELOG.md +++ b/java/ql/automodel/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.23 No user-facing changes. diff --git a/java/ql/automodel/src/change-notes/2024-05-23-Version1.md b/java/ql/automodel/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/java/ql/automodel/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/automodel/src/change-notes/released/1.0.0.md b/java/ql/automodel/src/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/java/ql/automodel/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/automodel/src/codeql-pack.release.yml b/java/ql/automodel/src/codeql-pack.release.yml index b7eeb5b97365..cc2195603d84 100644 --- a/java/ql/automodel/src/codeql-pack.release.yml +++ b/java/ql/automodel/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.23 diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 51392dd74c51..67b20bf22b0a 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 1.0.0 +version: 1.0.0-dev groups: - java - automodel diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 2aa6dc2355dc..dd4d35e882a0 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,17 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Major Analysis Improvements - -* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. - -### Minor Analysis Improvements - -* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. - ## 0.11.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md b/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md new file mode 100644 index 000000000000..3f6e8d8edaf9 --- /dev/null +++ b/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md @@ -0,0 +1,4 @@ +--- +category: majorAnalysis +--- +* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. diff --git a/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md b/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md new file mode 100644 index 000000000000..2b8bb0476159 --- /dev/null +++ b/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. diff --git a/java/ql/lib/change-notes/2024-05-23-Version1.md b/java/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/java/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/lib/change-notes/released/1.0.0.md b/java/ql/lib/change-notes/released/1.0.0.md deleted file mode 100644 index 7e7d1c5eb4ec..000000000000 --- a/java/ql/lib/change-notes/released/1.0.0.md +++ /dev/null @@ -1,13 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Major Analysis Improvements - -* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. - -### Minor Analysis Improvements - -* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index b7eeb5b97365..fce68697d682 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.11.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index fe1c514577fd..340c3b6dcb83 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 1.0.0 +version: 1.0.0-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 8a470ad2c1e9..349e1baa6301 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,15 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. -* Removed `local` query variants. The results pertaining to local sources can be found using the non-local counterpart query. As an example, the results previously found by `java/unvalidated-url-redirection-local` can be found by `java/unvalidated-url-redirection`, if the `local` threat model is enabled. The removed queries are `java/path-injection-local`, `java/command-line-injection-local`, `java/xss-local`, `java/sql-injection-local`, `java/http-response-splitting-local`, `java/improper-validation-of-array-construction-local`, `java/improper-validation-of-array-index-local`, `java/tainted-format-string-local`, `java/tainted-arithmetic-local`, `java/unvalidated-url-redirection-local`, `java/xxe-local` and `java/tainted-numeric-cast-local`. - -### Minor Analysis Improvements - -* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. -* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. - ## 0.8.16 No user-facing changes. diff --git a/java/ql/src/change-notes/released/1.0.0.md b/java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md similarity index 58% rename from java/ql/src/change-notes/released/1.0.0.md rename to java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md index 38d1a919ba5c..dbf638969ff6 100644 --- a/java/ql/src/change-notes/released/1.0.0.md +++ b/java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md @@ -1,11 +1,4 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. +--- +category: breaking +--- * Removed `local` query variants. The results pertaining to local sources can be found using the non-local counterpart query. As an example, the results previously found by `java/unvalidated-url-redirection-local` can be found by `java/unvalidated-url-redirection`, if the `local` threat model is enabled. The removed queries are `java/path-injection-local`, `java/command-line-injection-local`, `java/xss-local`, `java/sql-injection-local`, `java/http-response-splitting-local`, `java/improper-validation-of-array-construction-local`, `java/improper-validation-of-array-index-local`, `java/tainted-format-string-local`, `java/tainted-arithmetic-local`, `java/unvalidated-url-redirection-local`, `java/xxe-local` and `java/tainted-numeric-cast-local`. - -### Minor Analysis Improvements - -* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. -* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. diff --git a/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md b/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md new file mode 100644 index 000000000000..e3f1bf3e42d6 --- /dev/null +++ b/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. diff --git a/java/ql/src/change-notes/2024-05-23-Version1.md b/java/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/java/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md b/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md new file mode 100644 index 000000000000..50c12e32bd24 --- /dev/null +++ b/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. \ No newline at end of file diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index b7eeb5b97365..c735422e23a3 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.8.16 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 2bf470cf77bc..34659be0b77b 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.0.0 +version: 1.0.0-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 2ea585bb8e15..7073c4201f59 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,17 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. - -### Bug Fixes - -* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. - ## 0.9.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/released/1.0.0.md b/javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md similarity index 50% rename from ruby/ql/lib/change-notes/released/1.0.0.md rename to javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md index 296dee9f23bc..a1b98f691c17 100644 --- a/ruby/ql/lib/change-notes/released/1.0.0.md +++ b/javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md @@ -1,9 +1,4 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. +--- +category: minorAnalysis +--- +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md b/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md new file mode 100644 index 000000000000..0624b187e0ab --- /dev/null +++ b/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md @@ -0,0 +1,4 @@ +--- +category: fix +--- +* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/2024-05-23-Version1.md b/javascript/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/javascript/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/lib/change-notes/released/1.0.0.md b/javascript/ql/lib/change-notes/released/1.0.0.md deleted file mode 100644 index fb22a566fea2..000000000000 --- a/javascript/ql/lib/change-notes/released/1.0.0.md +++ /dev/null @@ -1,13 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. - -### Bug Fixes - -* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index b7eeb5b97365..6789dcd18b70 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.9.1 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index fdb76057e7a0..1c70efe992db 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 1.0.0 +version: 1.0.0-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 7330aa656948..1b72f496c784 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.8.16 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2024-05-23-Version1.md b/javascript/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/javascript/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/src/change-notes/released/1.0.0.md b/javascript/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/javascript/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index b7eeb5b97365..c735422e23a3 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.8.16 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index b4430ed96259..73b796c2f7c1 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.0.0 +version: 1.0.0-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 0c70f10dfb26..94639d0249e6 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.7.16 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/2024-05-23-Version1.md b/misc/suite-helpers/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/misc/suite-helpers/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/misc/suite-helpers/change-notes/released/1.0.0.md b/misc/suite-helpers/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/misc/suite-helpers/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index b7eeb5b97365..1ba18ba0a0a7 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.7.16 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index ff26865485db..e03d263202a8 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.0 +version: 1.0.0-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index b1c848994454..e3be98776498 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,18 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### New Features - -* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. - -### Minor Analysis Improvements - -* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. - ## 0.12.1 ### Major Analysis Improvements diff --git a/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md b/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md new file mode 100644 index 000000000000..e51617a97859 --- /dev/null +++ b/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md b/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md new file mode 100644 index 000000000000..93a6932d8bef --- /dev/null +++ b/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md @@ -0,0 +1,4 @@ +--- +category: feature +--- +* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md b/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md new file mode 100644 index 000000000000..05ad64c88417 --- /dev/null +++ b/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. diff --git a/python/ql/lib/change-notes/2024-05-23-Version1.md b/python/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/python/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/python/ql/lib/change-notes/released/1.0.0.md b/python/ql/lib/change-notes/released/1.0.0.md deleted file mode 100644 index 92b43e7ac0df..000000000000 --- a/python/ql/lib/change-notes/released/1.0.0.md +++ /dev/null @@ -1,14 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### New Features - -* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. - -### Minor Analysis Improvements - -* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index b7eeb5b97365..58783ccb26cc 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.12.1 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 9a504703530c..f809631e4773 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 1.0.0 +version: 1.0.0-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index d25b857894ce..449a8ccf9b24 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,13 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Added models of `gradio` PyPI package. - ## 0.9.16 ### New Queries diff --git a/python/ql/src/change-notes/2024-04-05-gradio-models.md b/python/ql/src/change-notes/2024-04-05-gradio-models.md new file mode 100644 index 000000000000..261c25f98865 --- /dev/null +++ b/python/ql/src/change-notes/2024-04-05-gradio-models.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added models of `gradio` PyPI package. diff --git a/python/ql/src/change-notes/2024-05-23-Version1.md b/python/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/python/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/python/ql/src/change-notes/released/1.0.0.md b/python/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index f81a657cf814..000000000000 --- a/python/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,9 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Added models of `gradio` PyPI package. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index b7eeb5b97365..5964e3ebe595 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.9.16 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 1e69d490d310..f52d5f6f935a 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.0.0 +version: 1.0.0-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 890b7e8c62c4..4aa350bd6aac 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,13 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. - ## 0.9.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md b/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md new file mode 100644 index 000000000000..c9db56787092 --- /dev/null +++ b/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. \ No newline at end of file diff --git a/ruby/ql/lib/change-notes/2024-05-23-Version1.md b/ruby/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/ruby/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index b7eeb5b97365..6789dcd18b70 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.9.1 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 3319997af72e..83bd890ed5fe 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 1.0.0 +version: 1.0.0-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 1d676dcd776f..514ffaf1310e 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.8.16 No user-facing changes. diff --git a/ruby/ql/src/change-notes/2024-05-23-Version1.md b/ruby/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/ruby/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/ruby/ql/src/change-notes/released/1.0.0.md b/ruby/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/ruby/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index b7eeb5b97365..c735422e23a3 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.8.16 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 0e716cf60669..9847102f60cf 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.0.0 +version: 1.0.0-dev groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index e29bc16f9611..af2eb1d46457 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.1.16 No user-facing changes. diff --git a/shared/controlflow/change-notes/2024-05-23-Version1.md b/shared/controlflow/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/controlflow/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/controlflow/change-notes/released/1.0.0.md b/shared/controlflow/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/controlflow/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index b7eeb5b97365..a01dca921616 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.1.16 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 96d6c3f7ec7c..7f043ab07cb6 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index ad7b01b31141..24e88db0fbf3 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,13 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. - ## 0.2.7 No user-facing changes. diff --git a/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md b/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md new file mode 100644 index 000000000000..1087b17a8df7 --- /dev/null +++ b/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. \ No newline at end of file diff --git a/shared/dataflow/change-notes/2024-05-23-Version1.md b/shared/dataflow/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/dataflow/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/dataflow/change-notes/released/1.0.0.md b/shared/dataflow/change-notes/released/1.0.0.md deleted file mode 100644 index acbb65a50e71..000000000000 --- a/shared/dataflow/change-notes/released/1.0.0.md +++ /dev/null @@ -1,9 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - -### Minor Analysis Improvements - -* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index b7eeb5b97365..6d3c0021858b 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.7 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 48ca4c2589b1..7d43b80b68b9 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 96976bd621ba..bfbe60bbef66 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/mad/change-notes/2024-05-23-Version1.md b/shared/mad/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/mad/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/mad/change-notes/released/1.0.0.md b/shared/mad/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/mad/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index cbe59d12b053..6807e3f93874 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index df73f02530d7..13305f3ad426 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.15 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/2024-05-23-Version1.md b/shared/rangeanalysis/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/rangeanalysis/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/rangeanalysis/change-notes/released/1.0.0.md b/shared/rangeanalysis/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/rangeanalysis/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index b7eeb5b97365..dff35216fc69 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.15 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index ca09becd4f7b..f3c0df380019 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index dec8aefc4e59..91d49f98a5c3 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/regex/change-notes/2024-05-23-Version1.md b/shared/regex/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/regex/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/regex/change-notes/released/1.0.0.md b/shared/regex/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/regex/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index d247d01a2d20..cfa976acc1d6 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index cd3c330ffd1f..b5c824327eec 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/ssa/change-notes/2024-05-23-Version1.md b/shared/ssa/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/ssa/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/ssa/change-notes/released/1.0.0.md b/shared/ssa/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/ssa/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index fe1a7f1a5ab7..f359310f9b82 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 8a8586a0f144..4f4b3189bb41 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.15 No user-facing changes. diff --git a/shared/threat-models/change-notes/2024-05-23-Version1.md b/shared/threat-models/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/threat-models/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/threat-models/change-notes/released/1.0.0.md b/shared/threat-models/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/threat-models/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index b7eeb5b97365..dff35216fc69 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.15 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 5a1f6272e699..1049675897b7 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.0 +version: 1.0.0-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index d2cdbc966ff6..ed27ac5df69d 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/tutorial/change-notes/2024-05-23-Version1.md b/shared/tutorial/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/tutorial/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/tutorial/change-notes/released/1.0.0.md b/shared/tutorial/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/tutorial/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 803524c07edc..19d07e328efc 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 63bc1bf2cdc1..0ceea89ca255 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.3 No user-facing changes. diff --git a/shared/typeflow/change-notes/2024-05-23-Version1.md b/shared/typeflow/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/typeflow/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typeflow/change-notes/released/1.0.0.md b/shared/typeflow/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/typeflow/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index b7eeb5b97365..a24b693d1e7a 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.3 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 3829b704b2b0..e619b8770886 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 118546bed3b9..0991b2710758 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/typetracking/change-notes/2024-05-23-Version1.md b/shared/typetracking/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/typetracking/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typetracking/change-notes/released/1.0.0.md b/shared/typetracking/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/typetracking/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index f09a71626d5d..5d98c1c8244d 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 27808710519d..ebc537deaa03 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/typos/change-notes/2024-05-23-Version1.md b/shared/typos/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/typos/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typos/change-notes/released/1.0.0.md b/shared/typos/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/typos/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 6fac92a9701f..2d89f5bdcbd0 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 31c2780a6654..36324dff52dc 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/util/change-notes/2024-05-23-Version1.md b/shared/util/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/util/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/util/change-notes/released/1.0.0.md b/shared/util/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/util/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index d679f106c76d..1152b588525d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index be5be19f0b22..d7831747b120 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.0.3 No user-facing changes. diff --git a/shared/xml/change-notes/2024-05-23-Version1.md b/shared/xml/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/xml/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/xml/change-notes/released/1.0.0.md b/shared/xml/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/xml/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index b7eeb5b97365..a24b693d1e7a 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.0.3 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index c219b0f470b8..25de9ee3c18e 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index fea7ae7478fb..6a603e61c5f3 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.2.16 No user-facing changes. diff --git a/shared/yaml/change-notes/2024-05-23-Version1.md b/shared/yaml/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/shared/yaml/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/yaml/change-notes/released/1.0.0.md b/shared/yaml/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/shared/yaml/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index b7eeb5b97365..2aa64d9ed07e 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.2.16 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 75338f9faf21..d2d2edfe07be 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.0 +version: 1.0.0-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 381e1395cb99..c4a8cd42016a 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.3.16 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2024-05-23-Version1.md b/swift/ql/lib/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/swift/ql/lib/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/lib/change-notes/released/1.0.0.md b/swift/ql/lib/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/swift/ql/lib/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index b7eeb5b97365..0a6d86fa74fa 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.3.16 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index a35dad9a62af..941253559d6c 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 1.0.0 +version: 1.0.0-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index c3333ed27651..b31da8afa3fb 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. - ## 0.3.16 No user-facing changes. diff --git a/swift/ql/src/change-notes/2024-05-23-Version1.md b/swift/ql/src/change-notes/2024-05-23-Version1.md new file mode 100644 index 000000000000..5840e51017be --- /dev/null +++ b/swift/ql/src/change-notes/2024-05-23-Version1.md @@ -0,0 +1,4 @@ +--- +category: breaking +--- +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/src/change-notes/released/1.0.0.md b/swift/ql/src/change-notes/released/1.0.0.md deleted file mode 100644 index 7c7dd01f4051..000000000000 --- a/swift/ql/src/change-notes/released/1.0.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 1.0.0 - -### Breaking Changes - -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index b7eeb5b97365..0a6d86fa74fa 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.0 +lastReleaseVersion: 0.3.16 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index baa1174690a3..593cb113d9c6 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.0 +version: 1.0.0-dev groups: - swift - queries From a5c392ed4b4560ae8578e025d1ab50c744837770 Mon Sep 17 00:00:00 2001 From: Owen Mansel-Chan Date: Thu, 30 May 2024 15:50:37 +0100 Subject: [PATCH 2/6] Add back taint models for `append` and `copy` This is needed when they are used with string arguments. --- go/ql/lib/semmle/go/frameworks/Stdlib.qll | 24 +++++++++++++++++++++++ 1 file changed, 24 insertions(+) diff --git a/go/ql/lib/semmle/go/frameworks/Stdlib.qll b/go/ql/lib/semmle/go/frameworks/Stdlib.qll index 44f3d16c11ce..5b33522e066a 100644 --- a/go/ql/lib/semmle/go/frameworks/Stdlib.qll +++ b/go/ql/lib/semmle/go/frameworks/Stdlib.qll @@ -44,6 +44,30 @@ import semmle.go.frameworks.stdlib.TextTabwriter import semmle.go.frameworks.stdlib.TextTemplate import semmle.go.frameworks.stdlib.Unsafe +/** + * A model of the built-in `append` function, which propagates taint from its arguments to its + * result. + */ +private class AppendFunction extends TaintTracking::FunctionModel { + AppendFunction() { this = Builtin::append() } + + override predicate hasTaintFlow(FunctionInput inp, FunctionOutput outp) { + inp.isParameter(_) and outp.isResult() + } +} + +/** + * A model of the built-in `copy` function, which propagates taint from its second argument + * to its first. + */ +private class CopyFunction extends TaintTracking::FunctionModel { + CopyFunction() { this = Builtin::copy() } + + override predicate hasTaintFlow(FunctionInput inp, FunctionOutput outp) { + inp.isParameter(1) and outp.isParameter(0) + } +} + /** Provides a class for modeling functions which convert strings into integers. */ module IntegerParser { /** From ffc25add70527b99a34d858cb73a753476d1546a Mon Sep 17 00:00:00 2001 From: Owen Mansel-Chan Date: Thu, 30 May 2024 16:24:46 +0100 Subject: [PATCH 3/6] Accept test changes --- .../FlowSteps/LocalTaintStep.expected | 7 ++++++ .../CWE-078/CommandInjection.expected | 23 +++++++++++++++++++ .../Security/CWE-327/UnsafeTLS.expected | 10 ++++++++ 3 files changed, 40 insertions(+) diff --git a/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected b/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected index 2579716e50ae..1397e71759d2 100644 --- a/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected +++ b/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected @@ -3,6 +3,13 @@ | main.go:38:13:38:13 | 1 | main.go:38:7:38:20 | slice literal | | main.go:38:16:38:16 | 2 | main.go:38:7:38:20 | slice literal | | main.go:38:19:38:19 | 3 | main.go:38:7:38:20 | slice literal | +| main.go:39:15:39:15 | s | main.go:39:8:39:25 | call to append | +| main.go:39:18:39:18 | 4 | main.go:39:8:39:25 | call to append | +| main.go:39:21:39:21 | 5 | main.go:39:8:39:25 | call to append | +| main.go:39:24:39:24 | 6 | main.go:39:8:39:25 | call to append | +| main.go:40:15:40:15 | s | main.go:40:8:40:23 | call to append | +| main.go:40:18:40:19 | s1 | main.go:40:8:40:23 | call to append | +| main.go:42:10:42:11 | s4 | main.go:38:2:38:2 | definition of s | | main.go:47:20:47:21 | next key-value pair in range | main.go:47:2:50:2 | range statement[0] | | main.go:47:20:47:21 | next key-value pair in range | main.go:47:2:50:2 | range statement[1] | | main.go:47:20:47:21 | xs | main.go:47:2:50:2 | range statement[1] | diff --git a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected index d728f3e3b566..577f2d877ae7 100644 --- a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected +++ b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected @@ -26,6 +26,7 @@ edges | SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:14:23:14:33 | slice expression | provenance | | | SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:39:31:39:37 | tainted | provenance | | | SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:52:24:52:30 | tainted | provenance | | +| SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:53:21:53:28 | arrayLit | provenance | | | SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:68:31:68:37 | tainted | provenance | | | SanitizingDoubleDash.go:9:13:9:27 | call to Query | SanitizingDoubleDash.go:80:23:80:29 | tainted | provenance | | | SanitizingDoubleDash.go:13:15:13:32 | array literal [array] | SanitizingDoubleDash.go:14:23:14:30 | arrayLit [array] | provenance | | @@ -38,17 +39,23 @@ edges | SanitizingDoubleDash.go:39:14:39:44 | call to append | SanitizingDoubleDash.go:40:23:40:30 | arrayLit | provenance | | | SanitizingDoubleDash.go:39:14:39:44 | call to append [array] | SanitizingDoubleDash.go:40:23:40:30 | arrayLit | provenance | | | SanitizingDoubleDash.go:39:31:39:37 | tainted | SanitizingDoubleDash.go:39:14:39:44 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:39:31:39:37 | tainted | SanitizingDoubleDash.go:39:14:39:44 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:52:15:52:31 | slice literal [array] | SanitizingDoubleDash.go:53:21:53:28 | arrayLit [array] | provenance | | | SanitizingDoubleDash.go:52:24:52:30 | tainted | SanitizingDoubleDash.go:52:15:52:31 | slice literal [array] | provenance | | | SanitizingDoubleDash.go:53:14:53:35 | call to append | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | provenance | | | SanitizingDoubleDash.go:53:14:53:35 | call to append [array] | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | provenance | | +| SanitizingDoubleDash.go:53:21:53:28 | arrayLit | SanitizingDoubleDash.go:53:14:53:35 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:53:21:53:28 | arrayLit [array] | SanitizingDoubleDash.go:53:14:53:35 | call to append | provenance | MaD:28 | | SanitizingDoubleDash.go:53:21:53:28 | arrayLit [array] | SanitizingDoubleDash.go:53:14:53:35 | call to append [array] | provenance | MaD:28 | +| SanitizingDoubleDash.go:68:14:68:38 | []type{args} [array] | SanitizingDoubleDash.go:68:14:68:38 | call to append | provenance | MaD:29 | | SanitizingDoubleDash.go:68:14:68:38 | []type{args} [array] | SanitizingDoubleDash.go:68:14:68:38 | call to append [array] | provenance | MaD:29 | +| SanitizingDoubleDash.go:68:14:68:38 | call to append | SanitizingDoubleDash.go:69:21:69:28 | arrayLit | provenance | | | SanitizingDoubleDash.go:68:14:68:38 | call to append [array] | SanitizingDoubleDash.go:69:21:69:28 | arrayLit [array] | provenance | | | SanitizingDoubleDash.go:68:31:68:37 | tainted | SanitizingDoubleDash.go:68:14:68:38 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:68:31:68:37 | tainted | SanitizingDoubleDash.go:68:14:68:38 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:69:14:69:35 | call to append | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | provenance | | | SanitizingDoubleDash.go:69:14:69:35 | call to append [array] | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | provenance | | +| SanitizingDoubleDash.go:69:21:69:28 | arrayLit | SanitizingDoubleDash.go:69:14:69:35 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:69:21:69:28 | arrayLit [array] | SanitizingDoubleDash.go:69:14:69:35 | call to append | provenance | MaD:28 | | SanitizingDoubleDash.go:69:21:69:28 | arrayLit [array] | SanitizingDoubleDash.go:69:14:69:35 | call to append [array] | provenance | MaD:28 | | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:92:13:92:27 | call to Query | provenance | MaD:735 | @@ -62,6 +69,7 @@ edges | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:117:31:117:37 | tainted | provenance | | | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:123:31:123:37 | tainted | provenance | | | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:128:24:128:30 | tainted | provenance | | +| SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:129:21:129:28 | arrayLit | provenance | | | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:136:31:136:37 | tainted | provenance | | | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:142:31:142:37 | tainted | provenance | | | SanitizingDoubleDash.go:92:13:92:27 | call to Query | SanitizingDoubleDash.go:148:30:148:36 | tainted | provenance | | @@ -83,20 +91,24 @@ edges | SanitizingDoubleDash.go:111:14:111:44 | call to append | SanitizingDoubleDash.go:112:24:112:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:111:14:111:44 | call to append [array] | SanitizingDoubleDash.go:112:24:112:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:111:37:111:43 | tainted | SanitizingDoubleDash.go:111:14:111:44 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:111:37:111:43 | tainted | SanitizingDoubleDash.go:111:14:111:44 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:117:14:117:44 | []type{args} [array] | SanitizingDoubleDash.go:117:14:117:44 | call to append | provenance | MaD:29 | | SanitizingDoubleDash.go:117:14:117:44 | []type{args} [array] | SanitizingDoubleDash.go:117:14:117:44 | call to append [array] | provenance | MaD:29 | | SanitizingDoubleDash.go:117:14:117:44 | call to append | SanitizingDoubleDash.go:118:24:118:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:117:14:117:44 | call to append [array] | SanitizingDoubleDash.go:118:24:118:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:117:31:117:37 | tainted | SanitizingDoubleDash.go:117:14:117:44 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:117:31:117:37 | tainted | SanitizingDoubleDash.go:117:14:117:44 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:123:14:123:38 | []type{args} [array] | SanitizingDoubleDash.go:123:14:123:38 | call to append | provenance | MaD:29 | | SanitizingDoubleDash.go:123:14:123:38 | []type{args} [array] | SanitizingDoubleDash.go:123:14:123:38 | call to append [array] | provenance | MaD:29 | | SanitizingDoubleDash.go:123:14:123:38 | call to append | SanitizingDoubleDash.go:124:24:124:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:123:14:123:38 | call to append [array] | SanitizingDoubleDash.go:124:24:124:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:123:31:123:37 | tainted | SanitizingDoubleDash.go:123:14:123:38 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:123:31:123:37 | tainted | SanitizingDoubleDash.go:123:14:123:38 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:128:15:128:31 | slice literal [array] | SanitizingDoubleDash.go:129:21:129:28 | arrayLit [array] | provenance | | | SanitizingDoubleDash.go:128:24:128:30 | tainted | SanitizingDoubleDash.go:128:15:128:31 | slice literal [array] | provenance | | | SanitizingDoubleDash.go:129:14:129:35 | call to append | SanitizingDoubleDash.go:130:24:130:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:129:14:129:35 | call to append [array] | SanitizingDoubleDash.go:130:24:130:31 | arrayLit | provenance | | +| SanitizingDoubleDash.go:129:21:129:28 | arrayLit | SanitizingDoubleDash.go:129:14:129:35 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:129:21:129:28 | arrayLit [array] | SanitizingDoubleDash.go:129:14:129:35 | call to append | provenance | MaD:28 | | SanitizingDoubleDash.go:129:21:129:28 | arrayLit [array] | SanitizingDoubleDash.go:129:14:129:35 | call to append [array] | provenance | MaD:28 | | SanitizingDoubleDash.go:136:14:136:38 | []type{args} [array] | SanitizingDoubleDash.go:136:14:136:38 | call to append | provenance | MaD:29 | @@ -104,11 +116,16 @@ edges | SanitizingDoubleDash.go:136:14:136:38 | call to append | SanitizingDoubleDash.go:137:24:137:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:136:14:136:38 | call to append [array] | SanitizingDoubleDash.go:137:24:137:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:136:31:136:37 | tainted | SanitizingDoubleDash.go:136:14:136:38 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:136:31:136:37 | tainted | SanitizingDoubleDash.go:136:14:136:38 | call to append | provenance | FunctionModel | +| SanitizingDoubleDash.go:142:14:142:38 | []type{args} [array] | SanitizingDoubleDash.go:142:14:142:38 | call to append | provenance | MaD:29 | | SanitizingDoubleDash.go:142:14:142:38 | []type{args} [array] | SanitizingDoubleDash.go:142:14:142:38 | call to append [array] | provenance | MaD:29 | +| SanitizingDoubleDash.go:142:14:142:38 | call to append | SanitizingDoubleDash.go:143:21:143:28 | arrayLit | provenance | | | SanitizingDoubleDash.go:142:14:142:38 | call to append [array] | SanitizingDoubleDash.go:143:21:143:28 | arrayLit [array] | provenance | | | SanitizingDoubleDash.go:142:31:142:37 | tainted | SanitizingDoubleDash.go:142:14:142:38 | []type{args} [array] | provenance | | +| SanitizingDoubleDash.go:142:31:142:37 | tainted | SanitizingDoubleDash.go:142:14:142:38 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:143:14:143:35 | call to append | SanitizingDoubleDash.go:144:24:144:31 | arrayLit | provenance | | | SanitizingDoubleDash.go:143:14:143:35 | call to append [array] | SanitizingDoubleDash.go:144:24:144:31 | arrayLit | provenance | | +| SanitizingDoubleDash.go:143:21:143:28 | arrayLit | SanitizingDoubleDash.go:143:14:143:35 | call to append | provenance | FunctionModel | | SanitizingDoubleDash.go:143:21:143:28 | arrayLit [array] | SanitizingDoubleDash.go:143:14:143:35 | call to append | provenance | MaD:28 | | SanitizingDoubleDash.go:143:21:143:28 | arrayLit [array] | SanitizingDoubleDash.go:143:14:143:35 | call to append [array] | provenance | MaD:28 | nodes @@ -155,13 +172,16 @@ nodes | SanitizingDoubleDash.go:52:24:52:30 | tainted | semmle.label | tainted | | SanitizingDoubleDash.go:53:14:53:35 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:53:14:53:35 | call to append [array] | semmle.label | call to append [array] | +| SanitizingDoubleDash.go:53:21:53:28 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:53:21:53:28 | arrayLit [array] | semmle.label | arrayLit [array] | | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:68:14:68:38 | []type{args} [array] | semmle.label | []type{args} [array] | +| SanitizingDoubleDash.go:68:14:68:38 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:68:14:68:38 | call to append [array] | semmle.label | call to append [array] | | SanitizingDoubleDash.go:68:31:68:37 | tainted | semmle.label | tainted | | SanitizingDoubleDash.go:69:14:69:35 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:69:14:69:35 | call to append [array] | semmle.label | call to append [array] | +| SanitizingDoubleDash.go:69:21:69:28 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:69:21:69:28 | arrayLit [array] | semmle.label | arrayLit [array] | | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:80:23:80:29 | tainted | semmle.label | tainted | @@ -201,6 +221,7 @@ nodes | SanitizingDoubleDash.go:128:24:128:30 | tainted | semmle.label | tainted | | SanitizingDoubleDash.go:129:14:129:35 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:129:14:129:35 | call to append [array] | semmle.label | call to append [array] | +| SanitizingDoubleDash.go:129:21:129:28 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:129:21:129:28 | arrayLit [array] | semmle.label | arrayLit [array] | | SanitizingDoubleDash.go:130:24:130:31 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:136:14:136:38 | []type{args} [array] | semmle.label | []type{args} [array] | @@ -209,10 +230,12 @@ nodes | SanitizingDoubleDash.go:136:31:136:37 | tainted | semmle.label | tainted | | SanitizingDoubleDash.go:137:24:137:31 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:142:14:142:38 | []type{args} [array] | semmle.label | []type{args} [array] | +| SanitizingDoubleDash.go:142:14:142:38 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:142:14:142:38 | call to append [array] | semmle.label | call to append [array] | | SanitizingDoubleDash.go:142:31:142:37 | tainted | semmle.label | tainted | | SanitizingDoubleDash.go:143:14:143:35 | call to append | semmle.label | call to append | | SanitizingDoubleDash.go:143:14:143:35 | call to append [array] | semmle.label | call to append [array] | +| SanitizingDoubleDash.go:143:21:143:28 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:143:21:143:28 | arrayLit [array] | semmle.label | arrayLit [array] | | SanitizingDoubleDash.go:144:24:144:31 | arrayLit | semmle.label | arrayLit | | SanitizingDoubleDash.go:148:30:148:36 | tainted | semmle.label | tainted | diff --git a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected index d87cdb8dcdcf..291d0a4d5ca7 100644 --- a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected +++ b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected @@ -15,25 +15,33 @@ edges | UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:312:18:314:4 | slice literal | provenance | | | UnsafeTLS.go:329:25:329:94 | []type{args} [array] | UnsafeTLS.go:329:25:329:94 | call to append | provenance | MaD:29 | | UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:329:25:329:94 | []type{args} [array] | provenance | | +| UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:329:25:329:94 | call to append | provenance | FunctionModel | | UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites | UnsafeTLS.go:336:54:336:57 | selection of ID | provenance | | | UnsafeTLS.go:336:26:336:58 | []type{args} [array] | UnsafeTLS.go:336:26:336:58 | call to append | provenance | MaD:29 | | UnsafeTLS.go:336:54:336:57 | selection of ID | UnsafeTLS.go:336:26:336:58 | []type{args} [array] | provenance | | +| UnsafeTLS.go:336:54:336:57 | selection of ID | UnsafeTLS.go:336:26:336:58 | call to append | provenance | FunctionModel | | UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites | UnsafeTLS.go:344:40:344:43 | selection of ID | provenance | | | UnsafeTLS.go:344:19:344:44 | []type{args} [array] | UnsafeTLS.go:344:19:344:44 | call to append | provenance | MaD:29 | | UnsafeTLS.go:344:19:344:44 | []type{args} [array] | UnsafeTLS.go:344:19:344:44 | call to append [array] | provenance | MaD:29 | +| UnsafeTLS.go:344:19:344:44 | call to append | UnsafeTLS.go:344:26:344:37 | cipherSuites | provenance | | | UnsafeTLS.go:344:19:344:44 | call to append | UnsafeTLS.go:346:25:346:36 | cipherSuites | provenance | | | UnsafeTLS.go:344:19:344:44 | call to append [array] | UnsafeTLS.go:344:26:344:37 | cipherSuites [array] | provenance | | +| UnsafeTLS.go:344:26:344:37 | cipherSuites | UnsafeTLS.go:344:19:344:44 | call to append | provenance | FunctionModel | | UnsafeTLS.go:344:26:344:37 | cipherSuites [array] | UnsafeTLS.go:344:19:344:44 | call to append | provenance | MaD:28 | | UnsafeTLS.go:344:26:344:37 | cipherSuites [array] | UnsafeTLS.go:344:19:344:44 | call to append [array] | provenance | MaD:28 | | UnsafeTLS.go:344:40:344:43 | selection of ID | UnsafeTLS.go:344:19:344:44 | []type{args} [array] | provenance | | +| UnsafeTLS.go:344:40:344:43 | selection of ID | UnsafeTLS.go:344:19:344:44 | call to append | provenance | FunctionModel | | UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites | UnsafeTLS.go:353:40:353:51 | selection of ID | provenance | | | UnsafeTLS.go:353:19:353:52 | []type{args} [array] | UnsafeTLS.go:353:19:353:52 | call to append | provenance | MaD:29 | | UnsafeTLS.go:353:19:353:52 | []type{args} [array] | UnsafeTLS.go:353:19:353:52 | call to append [array] | provenance | MaD:29 | +| UnsafeTLS.go:353:19:353:52 | call to append | UnsafeTLS.go:353:26:353:37 | cipherSuites | provenance | | | UnsafeTLS.go:353:19:353:52 | call to append | UnsafeTLS.go:355:25:355:36 | cipherSuites | provenance | | | UnsafeTLS.go:353:19:353:52 | call to append [array] | UnsafeTLS.go:353:26:353:37 | cipherSuites [array] | provenance | | +| UnsafeTLS.go:353:26:353:37 | cipherSuites | UnsafeTLS.go:353:19:353:52 | call to append | provenance | FunctionModel | | UnsafeTLS.go:353:26:353:37 | cipherSuites [array] | UnsafeTLS.go:353:19:353:52 | call to append | provenance | MaD:28 | | UnsafeTLS.go:353:26:353:37 | cipherSuites [array] | UnsafeTLS.go:353:19:353:52 | call to append [array] | provenance | MaD:28 | | UnsafeTLS.go:353:40:353:51 | selection of ID | UnsafeTLS.go:353:19:353:52 | []type{args} [array] | provenance | | +| UnsafeTLS.go:353:40:353:51 | selection of ID | UnsafeTLS.go:353:19:353:52 | call to append | provenance | FunctionModel | | UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:362:18:364:4 | slice literal | provenance | | | UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:370:18:372:4 | slice literal | provenance | | | UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:378:18:380:4 | slice literal | provenance | | @@ -118,6 +126,7 @@ nodes | UnsafeTLS.go:344:19:344:44 | []type{args} [array] | semmle.label | []type{args} [array] | | UnsafeTLS.go:344:19:344:44 | call to append | semmle.label | call to append | | UnsafeTLS.go:344:19:344:44 | call to append [array] | semmle.label | call to append [array] | +| UnsafeTLS.go:344:26:344:37 | cipherSuites | semmle.label | cipherSuites | | UnsafeTLS.go:344:26:344:37 | cipherSuites [array] | semmle.label | cipherSuites [array] | | UnsafeTLS.go:344:40:344:43 | selection of ID | semmle.label | selection of ID | | UnsafeTLS.go:346:25:346:36 | cipherSuites | semmle.label | cipherSuites | @@ -125,6 +134,7 @@ nodes | UnsafeTLS.go:353:19:353:52 | []type{args} [array] | semmle.label | []type{args} [array] | | UnsafeTLS.go:353:19:353:52 | call to append | semmle.label | call to append | | UnsafeTLS.go:353:19:353:52 | call to append [array] | semmle.label | call to append [array] | +| UnsafeTLS.go:353:26:353:37 | cipherSuites | semmle.label | cipherSuites | | UnsafeTLS.go:353:26:353:37 | cipherSuites [array] | semmle.label | cipherSuites [array] | | UnsafeTLS.go:353:40:353:51 | selection of ID | semmle.label | selection of ID | | UnsafeTLS.go:355:25:355:36 | cipherSuites | semmle.label | cipherSuites | From d112073a13fe3ff0ec14f36fc8b02d2adf5cbee2 Mon Sep 17 00:00:00 2001 From: Owen Mansel-Chan Date: Thu, 30 May 2024 21:04:05 +0100 Subject: [PATCH 4/6] Edit change note --- go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md b/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md index 3d7e2e9e1a66..a7dd52604a31 100644 --- a/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md +++ b/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md @@ -1,4 +1,4 @@ --- category: minorAnalysis --- -* Converted the models for the built-in functions `append`, `copy`, `max` and `min` to value flow and Models-as-Data. +* Added value flow models for the built-in functions `append`, `copy`, `max` and `min` using Models-as-Data. Removed the old-style models for `max` and `min`. From a22e70373af22ec8ec78757083e0efa42c075baa Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Fri, 31 May 2024 13:40:51 +0000 Subject: [PATCH 5/6] Release preparation for version 2.17.4 --- cpp/ql/lib/CHANGELOG.md | 6 ++++++ .../{2024-05-23-Version1.md => released/1.0.0.md} | 7 ++++--- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 11 +++++++++++ .../2024-05-19-avoid-reporting-static-variable.md | 4 ---- ...se-of-unique-pointer-after-lifetime-ends-fp.md | 4 ---- cpp/ql/src/change-notes/released/1.0.0.md | 10 ++++++++++ cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.17.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.17.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 6 ++++++ .../{2024-05-23-Version1.md => released/1.0.0.md} | 7 ++++--- csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 6 ++++++ .../{2024-05-23-Version1.md => released/1.0.0.md} | 7 ++++--- csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- .../change-notes/released/1.0.0.md | 7 ++++--- go/ql/consistency-queries/codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 12 ++++++++++++ .../2024-05-09-model-append-copy-max-min.md | 4 ---- ...-incorrect-integer-conversion-defined-types.md | 4 ---- .../2024-05-16-read-store-steps-named-types.md | 4 ---- go/ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- go/ql/lib/change-notes/released/1.0.0.md | 11 +++++++++++ go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 10 ++++++++++ .../2024-05-14-incorrect-integer-conversion.md | 4 ---- go/ql/src/change-notes/2024-05-23-Version1.md | 4 ---- go/ql/src/change-notes/released/1.0.0.md | 9 +++++++++ go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/automodel/src/CHANGELOG.md | 6 ++++++ .../src/change-notes/2024-05-23-Version1.md | 4 ---- .../automodel/src/change-notes/released/1.0.0.md | 5 +++++ java/ql/automodel/src/codeql-pack.release.yml | 2 +- java/ql/automodel/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 14 ++++++++++++++ .../2024-05-15-static-field-side-effect.md | 4 ---- .../2024-05-16-gradle-jdk-detection.md | 4 ---- java/ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- java/ql/lib/change-notes/released/1.0.0.md | 13 +++++++++++++ java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 12 ++++++++++++ .../2024-05-22-zipslip-number-sanitizer.md | 4 ---- java/ql/src/change-notes/2024-05-23-Version1.md | 4 ---- .../2024-05-23-trusted-boundary-violation.md | 4 ---- .../1.0.0.md} | 13 ++++++++++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 14 ++++++++++++++ .../lib/change-notes/2024-05-21-big-ts-files.md | 4 ---- .../ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- javascript/ql/lib/change-notes/released/1.0.0.md | 13 +++++++++++++ javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 ++++++ .../ql/src/change-notes/2024-05-23-Version1.md | 4 ---- javascript/ql/src/change-notes/released/1.0.0.md | 5 +++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- misc/suite-helpers/change-notes/released/1.0.0.md | 5 +++++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 15 +++++++++++++++ .../2024-05-09-sensitive-heuristics.md | 4 ---- .../2024-05-17-maD-rich-type-column.md | 4 ---- .../2024-05-20-flask-session-interface.md | 4 ---- python/ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- python/ql/lib/change-notes/released/1.0.0.md | 14 ++++++++++++++ python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 10 ++++++++++ .../src/change-notes/2024-04-05-gradio-models.md | 4 ---- python/ql/src/change-notes/2024-05-23-Version1.md | 4 ---- python/ql/src/change-notes/released/1.0.0.md | 9 +++++++++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 10 ++++++++++ .../2024-05-09-sensitive-heuristics.md | 4 ---- ruby/ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- .../ql/lib/change-notes/released/1.0.0.md | 13 +++++++++---- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 6 ++++++ ruby/ql/src/change-notes/2024-05-23-Version1.md | 4 ---- ruby/ql/src/change-notes/released/1.0.0.md | 5 +++++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- shared/controlflow/change-notes/released/1.0.0.md | 5 +++++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 10 ++++++++++ .../change-notes/2024-05-06-param-return-nodes.md | 4 ---- .../dataflow/change-notes/2024-05-23-Version1.md | 4 ---- shared/dataflow/change-notes/released/1.0.0.md | 9 +++++++++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 6 ++++++ shared/mad/change-notes/2024-05-23-Version1.md | 4 ---- shared/mad/change-notes/released/1.0.0.md | 5 +++++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- .../rangeanalysis/change-notes/released/1.0.0.md | 5 +++++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 6 ++++++ shared/regex/change-notes/2024-05-23-Version1.md | 4 ---- shared/regex/change-notes/released/1.0.0.md | 5 +++++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 6 ++++++ shared/ssa/change-notes/2024-05-23-Version1.md | 4 ---- shared/ssa/change-notes/released/1.0.0.md | 5 +++++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- .../threat-models/change-notes/released/1.0.0.md | 5 +++++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 6 ++++++ .../tutorial/change-notes/2024-05-23-Version1.md | 4 ---- shared/tutorial/change-notes/released/1.0.0.md | 5 +++++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 6 ++++++ .../typeflow/change-notes/2024-05-23-Version1.md | 4 ---- shared/typeflow/change-notes/released/1.0.0.md | 5 +++++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 6 ++++++ .../change-notes/2024-05-23-Version1.md | 4 ---- .../typetracking/change-notes/released/1.0.0.md | 5 +++++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 6 ++++++ shared/typos/change-notes/2024-05-23-Version1.md | 4 ---- shared/typos/change-notes/released/1.0.0.md | 5 +++++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 6 ++++++ shared/util/change-notes/2024-05-23-Version1.md | 4 ---- shared/util/change-notes/released/1.0.0.md | 5 +++++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 6 ++++++ shared/xml/change-notes/2024-05-23-Version1.md | 4 ---- shared/xml/change-notes/released/1.0.0.md | 5 +++++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 6 ++++++ shared/yaml/change-notes/2024-05-23-Version1.md | 4 ---- shared/yaml/change-notes/released/1.0.0.md | 5 +++++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 ++++++ swift/ql/lib/change-notes/2024-05-23-Version1.md | 4 ---- swift/ql/lib/change-notes/released/1.0.0.md | 5 +++++ swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 6 ++++++ swift/ql/src/change-notes/2024-05-23-Version1.md | 4 ---- swift/ql/src/change-notes/released/1.0.0.md | 5 +++++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 186 files changed, 558 insertions(+), 273 deletions(-) rename cpp/ql/lib/change-notes/{2024-05-23-Version1.md => released/1.0.0.md} (82%) delete mode 100644 cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md delete mode 100644 cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md create mode 100644 cpp/ql/src/change-notes/released/1.0.0.md create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md rename csharp/ql/lib/change-notes/{2024-05-23-Version1.md => released/1.0.0.md} (82%) rename csharp/ql/src/change-notes/{2024-05-23-Version1.md => released/1.0.0.md} (82%) delete mode 100644 go/ql/consistency-queries/change-notes/2024-05-23-Version1.md rename cpp/ql/src/change-notes/2024-05-23-Version1.md => go/ql/consistency-queries/change-notes/released/1.0.0.md (82%) delete mode 100644 go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md delete mode 100644 go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md delete mode 100644 go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md delete mode 100644 go/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 go/ql/lib/change-notes/released/1.0.0.md delete mode 100644 go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md delete mode 100644 go/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 go/ql/src/change-notes/released/1.0.0.md delete mode 100644 java/ql/automodel/src/change-notes/2024-05-23-Version1.md create mode 100644 java/ql/automodel/src/change-notes/released/1.0.0.md delete mode 100644 java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md delete mode 100644 java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md delete mode 100644 java/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 java/ql/lib/change-notes/released/1.0.0.md delete mode 100644 java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md delete mode 100644 java/ql/src/change-notes/2024-05-23-Version1.md delete mode 100644 java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md rename java/ql/src/change-notes/{2024-05-01-remove-local-query-variants.md => released/1.0.0.md} (58%) delete mode 100644 javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md delete mode 100644 javascript/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 javascript/ql/lib/change-notes/released/1.0.0.md delete mode 100644 javascript/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 javascript/ql/src/change-notes/released/1.0.0.md delete mode 100644 misc/suite-helpers/change-notes/2024-05-23-Version1.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.0.md delete mode 100644 python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md delete mode 100644 python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md delete mode 100644 python/ql/lib/change-notes/2024-05-20-flask-session-interface.md delete mode 100644 python/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 python/ql/lib/change-notes/released/1.0.0.md delete mode 100644 python/ql/src/change-notes/2024-04-05-gradio-models.md delete mode 100644 python/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 python/ql/src/change-notes/released/1.0.0.md delete mode 100644 ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md delete mode 100644 ruby/ql/lib/change-notes/2024-05-23-Version1.md rename javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md => ruby/ql/lib/change-notes/released/1.0.0.md (50%) delete mode 100644 ruby/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 ruby/ql/src/change-notes/released/1.0.0.md delete mode 100644 shared/controlflow/change-notes/2024-05-23-Version1.md create mode 100644 shared/controlflow/change-notes/released/1.0.0.md delete mode 100644 shared/dataflow/change-notes/2024-05-06-param-return-nodes.md delete mode 100644 shared/dataflow/change-notes/2024-05-23-Version1.md create mode 100644 shared/dataflow/change-notes/released/1.0.0.md delete mode 100644 shared/mad/change-notes/2024-05-23-Version1.md create mode 100644 shared/mad/change-notes/released/1.0.0.md delete mode 100644 shared/rangeanalysis/change-notes/2024-05-23-Version1.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.0.md delete mode 100644 shared/regex/change-notes/2024-05-23-Version1.md create mode 100644 shared/regex/change-notes/released/1.0.0.md delete mode 100644 shared/ssa/change-notes/2024-05-23-Version1.md create mode 100644 shared/ssa/change-notes/released/1.0.0.md delete mode 100644 shared/threat-models/change-notes/2024-05-23-Version1.md create mode 100644 shared/threat-models/change-notes/released/1.0.0.md delete mode 100644 shared/tutorial/change-notes/2024-05-23-Version1.md create mode 100644 shared/tutorial/change-notes/released/1.0.0.md delete mode 100644 shared/typeflow/change-notes/2024-05-23-Version1.md create mode 100644 shared/typeflow/change-notes/released/1.0.0.md delete mode 100644 shared/typetracking/change-notes/2024-05-23-Version1.md create mode 100644 shared/typetracking/change-notes/released/1.0.0.md delete mode 100644 shared/typos/change-notes/2024-05-23-Version1.md create mode 100644 shared/typos/change-notes/released/1.0.0.md delete mode 100644 shared/util/change-notes/2024-05-23-Version1.md create mode 100644 shared/util/change-notes/released/1.0.0.md delete mode 100644 shared/xml/change-notes/2024-05-23-Version1.md create mode 100644 shared/xml/change-notes/released/1.0.0.md delete mode 100644 shared/yaml/change-notes/2024-05-23-Version1.md create mode 100644 shared/yaml/change-notes/released/1.0.0.md delete mode 100644 swift/ql/lib/change-notes/2024-05-23-Version1.md create mode 100644 swift/ql/lib/change-notes/released/1.0.0.md delete mode 100644 swift/ql/src/change-notes/2024-05-23-Version1.md create mode 100644 swift/ql/src/change-notes/released/1.0.0.md diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 63aa64f6f77d..da66014df8e5 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.13.1 No user-facing changes. diff --git a/cpp/ql/lib/change-notes/2024-05-23-Version1.md b/cpp/ql/lib/change-notes/released/1.0.0.md similarity index 82% rename from cpp/ql/lib/change-notes/2024-05-23-Version1.md rename to cpp/ql/lib/change-notes/released/1.0.0.md index 5840e51017be..7c7dd01f4051 100644 --- a/cpp/ql/lib/change-notes/2024-05-23-Version1.md +++ b/cpp/ql/lib/change-notes/released/1.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 1.0.0 + +### Breaking Changes + * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 92a33894b0bc..b7eeb5b97365 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.13.1 +lastReleaseVersion: 1.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 121cded7b7fb..653304cedf3c 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 1.0.0-dev +version: 1.0.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 9bc62270b7e0..b530e1484826 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean +* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. + ## 0.9.12 ### New Queries diff --git a/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md b/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md deleted file mode 100644 index 837afe168a41..000000000000 --- a/cpp/ql/src/change-notes/2024-05-19-avoid-reporting-static-variable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. \ No newline at end of file diff --git a/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md b/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md deleted file mode 100644 index f0cf02d4eba8..000000000000 --- a/cpp/ql/src/change-notes/2024-05-22-use-of-unique-pointer-after-lifetime-ends-fp.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean \ No newline at end of file diff --git a/cpp/ql/src/change-notes/released/1.0.0.md b/cpp/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..6f9b4e6e6b10 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,10 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The "Use of unique pointer after lifetime ends" query (`cpp/use-of-unique-pointer-after-lifetime-ends`) no longer reports an alert when the pointer is converted to a boolean +* The "Variable not initialized before use" query (`cpp/not-initialised`) no longer reports an alert on static variables. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 12f1a311ecad..b7eeb5b97365 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.12 +lastReleaseVersion: 1.0.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index f0cd27dd92ec..9e45007445b8 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.0.0-dev +version: 1.0.0 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 78b1cb40f649..8ead253e97f0 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.17 + +No user-facing changes. + ## 1.7.16 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md new file mode 100644 index 000000000000..cdbe25eaf78b --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.17.md @@ -0,0 +1,3 @@ +## 1.7.17 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 15756b8a4c75..ac9a08123d25 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.16 +lastReleaseVersion: 1.7.17 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 4402f8c610eb..5129894985fc 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.17-dev +version: 1.7.17 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 78b1cb40f649..8ead253e97f0 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.17 + +No user-facing changes. + ## 1.7.16 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md new file mode 100644 index 000000000000..cdbe25eaf78b --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.17.md @@ -0,0 +1,3 @@ +## 1.7.17 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 15756b8a4c75..ac9a08123d25 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.16 +lastReleaseVersion: 1.7.17 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 427e14d4a6fe..b5e75a5f357f 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.17-dev +version: 1.7.17 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 01a389d99e23..36d0a8aeec8d 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.10.1 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/2024-05-23-Version1.md b/csharp/ql/lib/change-notes/released/1.0.0.md similarity index 82% rename from csharp/ql/lib/change-notes/2024-05-23-Version1.md rename to csharp/ql/lib/change-notes/released/1.0.0.md index 5840e51017be..7c7dd01f4051 100644 --- a/csharp/ql/lib/change-notes/2024-05-23-Version1.md +++ b/csharp/ql/lib/change-notes/released/1.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 1.0.0 + +### Breaking Changes + * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index af7510b3cd65..b7eeb5b97365 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.10.1 +lastReleaseVersion: 1.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 7171ec2854f0..df83381ae532 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 1.0.0-dev +version: 1.0.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index ceae06c80f2b..0fa3c863ccfd 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.8.16 No user-facing changes. diff --git a/csharp/ql/src/change-notes/2024-05-23-Version1.md b/csharp/ql/src/change-notes/released/1.0.0.md similarity index 82% rename from csharp/ql/src/change-notes/2024-05-23-Version1.md rename to csharp/ql/src/change-notes/released/1.0.0.md index 5840e51017be..7c7dd01f4051 100644 --- a/csharp/ql/src/change-notes/2024-05-23-Version1.md +++ b/csharp/ql/src/change-notes/released/1.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 1.0.0 + +### Breaking Changes + * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index c735422e23a3..b7eeb5b97365 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.16 +lastReleaseVersion: 1.0.0 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index f19298f75771..89dffcd2dde0 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.0-dev +version: 1.0.0 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 4f4b3189bb41..8a8586a0f144 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.15 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md b/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/go/ql/consistency-queries/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/cpp/ql/src/change-notes/2024-05-23-Version1.md b/go/ql/consistency-queries/change-notes/released/1.0.0.md similarity index 82% rename from cpp/ql/src/change-notes/2024-05-23-Version1.md rename to go/ql/consistency-queries/change-notes/released/1.0.0.md index 5840e51017be..7c7dd01f4051 100644 --- a/cpp/ql/src/change-notes/2024-05-23-Version1.md +++ b/go/ql/consistency-queries/change-notes/released/1.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 1.0.0 + +### Breaking Changes + * CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index dff35216fc69..b7eeb5b97365 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.15 +lastReleaseVersion: 1.0.0 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index a31ff71eb018..758aadeeb015 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.0-dev +version: 1.0.0 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 48fa34080d6a..d98cc7f97f24 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. +* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. +* Added value flow models for the built-in functions `append`, `copy`, `max` and `min` using Models-as-Data. Removed the old-style models for `max` and `min`. + ## 0.8.1 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md b/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md deleted file mode 100644 index a7dd52604a31..000000000000 --- a/go/ql/lib/change-notes/2024-05-09-model-append-copy-max-min.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added value flow models for the built-in functions `append`, `copy`, `max` and `min` using Models-as-Data. Removed the old-style models for `max` and `min`. diff --git a/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md b/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md deleted file mode 100644 index c3343d6e5f04..000000000000 --- a/go/ql/lib/change-notes/2024-05-16-incorrect-integer-conversion-defined-types.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. diff --git a/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md b/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md deleted file mode 100644 index 037210c91592..000000000000 --- a/go/ql/lib/change-notes/2024-05-16-read-store-steps-named-types.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. diff --git a/go/ql/lib/change-notes/2024-05-23-Version1.md b/go/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/go/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/lib/change-notes/released/1.0.0.md b/go/ql/lib/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..a8d5f7215190 --- /dev/null +++ b/go/ql/lib/change-notes/released/1.0.0.md @@ -0,0 +1,11 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* A bug has been fixed which meant that the query `go/incorrect-integer-conversion` did not consider type assertions and type switches which use a defined type whose underlying type is an integer type. This may lead to fewer false positive alerts. +* A bug has been fixed which meant flow was not followed through some ranged for loops. This may lead to more alerts being found. +* Added value flow models for the built-in functions `append`, `copy`, `max` and `min` using Models-as-Data. Removed the old-style models for `max` and `min`. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 2f693f95ba69..b7eeb5b97365 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.1 +lastReleaseVersion: 1.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 9bea600fc3ce..b27f8e259bb7 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 1.0.0-dev +version: 1.0.0 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index e32dd2f671ba..b93f92762c9e 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. + ## 0.7.16 No user-facing changes. diff --git a/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md b/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md deleted file mode 100644 index b3403d092f67..000000000000 --- a/go/ql/src/change-notes/2024-05-14-incorrect-integer-conversion.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. diff --git a/go/ql/src/change-notes/2024-05-23-Version1.md b/go/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/go/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/go/ql/src/change-notes/released/1.0.0.md b/go/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..c8215a5b36fc --- /dev/null +++ b/go/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The query `go/incorrect-integer-conversion` has now been restricted to only use flow through value-preserving steps. This reduces false positives, especially around type switches. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 1ba18ba0a0a7..b7eeb5b97365 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.16 +lastReleaseVersion: 1.0.0 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index b7d4f3d5e74d..69888315a902 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.0.0-dev +version: 1.0.0 groups: - go - queries diff --git a/java/ql/automodel/src/CHANGELOG.md b/java/ql/automodel/src/CHANGELOG.md index f088448f0680..1ad05e3aa6d5 100644 --- a/java/ql/automodel/src/CHANGELOG.md +++ b/java/ql/automodel/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.23 No user-facing changes. diff --git a/java/ql/automodel/src/change-notes/2024-05-23-Version1.md b/java/ql/automodel/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/java/ql/automodel/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/automodel/src/change-notes/released/1.0.0.md b/java/ql/automodel/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/java/ql/automodel/src/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/automodel/src/codeql-pack.release.yml b/java/ql/automodel/src/codeql-pack.release.yml index cc2195603d84..b7eeb5b97365 100644 --- a/java/ql/automodel/src/codeql-pack.release.yml +++ b/java/ql/automodel/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.23 +lastReleaseVersion: 1.0.0 diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 67b20bf22b0a..51392dd74c51 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 1.0.0-dev +version: 1.0.0 groups: - java - automodel diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index dd4d35e882a0..2aa6dc2355dc 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,17 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Major Analysis Improvements + +* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. + +### Minor Analysis Improvements + +* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. + ## 0.11.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md b/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md deleted file mode 100644 index 3f6e8d8edaf9..000000000000 --- a/java/ql/lib/change-notes/2024-05-15-static-field-side-effect.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. diff --git a/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md b/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md deleted file mode 100644 index 2b8bb0476159..000000000000 --- a/java/ql/lib/change-notes/2024-05-16-gradle-jdk-detection.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. diff --git a/java/ql/lib/change-notes/2024-05-23-Version1.md b/java/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/java/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/lib/change-notes/released/1.0.0.md b/java/ql/lib/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7e7d1c5eb4ec --- /dev/null +++ b/java/ql/lib/change-notes/released/1.0.0.md @@ -0,0 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Major Analysis Improvements + +* Added support for data flow through side-effects on static fields. For example, when a static field containing an array is updated. + +### Minor Analysis Improvements + +* JDK version detection based on Gradle projects has been improved. Java extraction using build-modes `autobuild` or `none` is more likely to pick an appropriate JDK version, particularly when the Android Gradle Plugin or Spring Boot Plugin are in use. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index fce68697d682..b7eeb5b97365 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.11.0 +lastReleaseVersion: 1.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 340c3b6dcb83..fe1c514577fd 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 1.0.0-dev +version: 1.0.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 349e1baa6301..8a470ad2c1e9 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. +* Removed `local` query variants. The results pertaining to local sources can be found using the non-local counterpart query. As an example, the results previously found by `java/unvalidated-url-redirection-local` can be found by `java/unvalidated-url-redirection`, if the `local` threat model is enabled. The removed queries are `java/path-injection-local`, `java/command-line-injection-local`, `java/xss-local`, `java/sql-injection-local`, `java/http-response-splitting-local`, `java/improper-validation-of-array-construction-local`, `java/improper-validation-of-array-index-local`, `java/tainted-format-string-local`, `java/tainted-arithmetic-local`, `java/unvalidated-url-redirection-local`, `java/xxe-local` and `java/tainted-numeric-cast-local`. + +### Minor Analysis Improvements + +* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. +* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. + ## 0.8.16 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md b/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md deleted file mode 100644 index e3f1bf3e42d6..000000000000 --- a/java/ql/src/change-notes/2024-05-22-zipslip-number-sanitizer.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. diff --git a/java/ql/src/change-notes/2024-05-23-Version1.md b/java/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/java/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md b/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md deleted file mode 100644 index 50c12e32bd24..000000000000 --- a/java/ql/src/change-notes/2024-05-23-trusted-boundary-violation.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. \ No newline at end of file diff --git a/java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md b/java/ql/src/change-notes/released/1.0.0.md similarity index 58% rename from java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md rename to java/ql/src/change-notes/released/1.0.0.md index dbf638969ff6..38d1a919ba5c 100644 --- a/java/ql/src/change-notes/2024-05-01-remove-local-query-variants.md +++ b/java/ql/src/change-notes/released/1.0.0.md @@ -1,4 +1,11 @@ ---- -category: breaking ---- +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. * Removed `local` query variants. The results pertaining to local sources can be found using the non-local counterpart query. As an example, the results previously found by `java/unvalidated-url-redirection-local` can be found by `java/unvalidated-url-redirection`, if the `local` threat model is enabled. The removed queries are `java/path-injection-local`, `java/command-line-injection-local`, `java/xss-local`, `java/sql-injection-local`, `java/http-response-splitting-local`, `java/improper-validation-of-array-construction-local`, `java/improper-validation-of-array-index-local`, `java/tainted-format-string-local`, `java/tainted-arithmetic-local`, `java/unvalidated-url-redirection-local`, `java/xxe-local` and `java/tainted-numeric-cast-local`. + +### Minor Analysis Improvements + +* The alert message for the query "Trust boundary violation" (`java/trust-boundary-violation`) has been updated to include a link to the remote source. +* The sanitizer of the query `java/zipslip` has been improved to include nodes that are safe due to having certain safe types. This reduces false positives. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index c735422e23a3..b7eeb5b97365 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.16 +lastReleaseVersion: 1.0.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 34659be0b77b..2bf470cf77bc 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.0.0-dev +version: 1.0.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 7073c4201f59..2ea585bb8e15 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,17 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. + +### Bug Fixes + +* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. + ## 0.9.1 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md b/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md deleted file mode 100644 index 0624b187e0ab..000000000000 --- a/javascript/ql/lib/change-notes/2024-05-21-big-ts-files.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/2024-05-23-Version1.md b/javascript/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/javascript/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/lib/change-notes/released/1.0.0.md b/javascript/ql/lib/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..fb22a566fea2 --- /dev/null +++ b/javascript/ql/lib/change-notes/released/1.0.0.md @@ -0,0 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. + +### Bug Fixes + +* Fixed a bug where very large TypeScript files would cause database creation to crash. Large files over 10MB were already excluded from analysis, but the file size check was not applied to TypeScript files. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 6789dcd18b70..b7eeb5b97365 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.1 +lastReleaseVersion: 1.0.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 1c70efe992db..fdb76057e7a0 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 1.0.0-dev +version: 1.0.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 1b72f496c784..7330aa656948 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.8.16 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2024-05-23-Version1.md b/javascript/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/javascript/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/src/change-notes/released/1.0.0.md b/javascript/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index c735422e23a3..b7eeb5b97365 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.16 +lastReleaseVersion: 1.0.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 73b796c2f7c1..b4430ed96259 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.0.0-dev +version: 1.0.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 94639d0249e6..0c70f10dfb26 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.7.16 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/2024-05-23-Version1.md b/misc/suite-helpers/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/misc/suite-helpers/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/misc/suite-helpers/change-notes/released/1.0.0.md b/misc/suite-helpers/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 1ba18ba0a0a7..b7eeb5b97365 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.16 +lastReleaseVersion: 1.0.0 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index e03d263202a8..ff26865485db 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.0-dev +version: 1.0.0 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index e3be98776498..b1c848994454 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### New Features + +* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. + +### Minor Analysis Improvements + +* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. + ## 0.12.1 ### Major Analysis Improvements diff --git a/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md b/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md deleted file mode 100644 index e51617a97859..000000000000 --- a/python/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md b/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md deleted file mode 100644 index 93a6932d8bef..000000000000 --- a/python/ql/lib/change-notes/2024-05-17-maD-rich-type-column.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md b/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md deleted file mode 100644 index 05ad64c88417..000000000000 --- a/python/ql/lib/change-notes/2024-05-20-flask-session-interface.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. diff --git a/python/ql/lib/change-notes/2024-05-23-Version1.md b/python/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/python/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/python/ql/lib/change-notes/released/1.0.0.md b/python/ql/lib/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..92b43e7ac0df --- /dev/null +++ b/python/ql/lib/change-notes/released/1.0.0.md @@ -0,0 +1,14 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### New Features + +* A Python MaD (Models as Data) row may now contain a dotted path in the `type` column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary `["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"]` can now be written `["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]`. To refer to an actual class, one may add a `!` at the end of the path. + +### Minor Analysis Improvements + +* The `request` parameter of Flask `SessionInterface.open_session` method is now modeled as a remote flow source. +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `py/clear-text-storage-sensitive-data` and `py/clear-text-logging-sensitive-data`. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 58783ccb26cc..b7eeb5b97365 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.12.1 +lastReleaseVersion: 1.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index f809631e4773..9a504703530c 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 1.0.0-dev +version: 1.0.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 449a8ccf9b24..d25b857894ce 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Added models of `gradio` PyPI package. + ## 0.9.16 ### New Queries diff --git a/python/ql/src/change-notes/2024-04-05-gradio-models.md b/python/ql/src/change-notes/2024-04-05-gradio-models.md deleted file mode 100644 index 261c25f98865..000000000000 --- a/python/ql/src/change-notes/2024-04-05-gradio-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added models of `gradio` PyPI package. diff --git a/python/ql/src/change-notes/2024-05-23-Version1.md b/python/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/python/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/python/ql/src/change-notes/released/1.0.0.md b/python/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..f81a657cf814 --- /dev/null +++ b/python/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Added models of `gradio` PyPI package. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 5964e3ebe595..b7eeb5b97365 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.16 +lastReleaseVersion: 1.0.0 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index f52d5f6f935a..1e69d490d310 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.0.0-dev +version: 1.0.0 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 4aa350bd6aac..890b7e8c62c4 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. + ## 0.9.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md b/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md deleted file mode 100644 index c9db56787092..000000000000 --- a/ruby/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. \ No newline at end of file diff --git a/ruby/ql/lib/change-notes/2024-05-23-Version1.md b/ruby/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/ruby/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md b/ruby/ql/lib/change-notes/released/1.0.0.md similarity index 50% rename from javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md rename to ruby/ql/lib/change-notes/released/1.0.0.md index a1b98f691c17..296dee9f23bc 100644 --- a/javascript/ql/lib/change-notes/2024-05-09-sensitive-heuristics.md +++ b/ruby/ql/lib/change-notes/released/1.0.0.md @@ -1,4 +1,9 @@ ---- -category: minorAnalysis ---- -* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `js/clear-text-storage-sensitive-data` and `js/clear-text-logging`. \ No newline at end of file +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared `SensitiveDataHeuristics.qll` library. This may result in additional results for queries that use sensitive data such as `rb/sensitive-get-query`. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 6789dcd18b70..b7eeb5b97365 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.1 +lastReleaseVersion: 1.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 83bd890ed5fe..3319997af72e 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 1.0.0-dev +version: 1.0.0 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 514ffaf1310e..1d676dcd776f 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.8.16 No user-facing changes. diff --git a/ruby/ql/src/change-notes/2024-05-23-Version1.md b/ruby/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/ruby/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/ruby/ql/src/change-notes/released/1.0.0.md b/ruby/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index c735422e23a3..b7eeb5b97365 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.16 +lastReleaseVersion: 1.0.0 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 9847102f60cf..0e716cf60669 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.0.0-dev +version: 1.0.0 groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index af2eb1d46457..e29bc16f9611 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.1.16 No user-facing changes. diff --git a/shared/controlflow/change-notes/2024-05-23-Version1.md b/shared/controlflow/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/controlflow/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/controlflow/change-notes/released/1.0.0.md b/shared/controlflow/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/controlflow/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index a01dca921616..b7eeb5b97365 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 7f043ab07cb6..96d6c3f7ec7c 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 24e88db0fbf3..ad7b01b31141 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. + ## 0.2.7 No user-facing changes. diff --git a/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md b/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md deleted file mode 100644 index 1087b17a8df7..000000000000 --- a/shared/dataflow/change-notes/2024-05-06-param-return-nodes.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. \ No newline at end of file diff --git a/shared/dataflow/change-notes/2024-05-23-Version1.md b/shared/dataflow/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/dataflow/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/dataflow/change-notes/released/1.0.0.md b/shared/dataflow/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..acbb65a50e71 --- /dev/null +++ b/shared/dataflow/change-notes/released/1.0.0.md @@ -0,0 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + +### Minor Analysis Improvements + +* The data flow library now adds intermediate nodes when data flows out of a function via a parameter, in order to make path explanations easier to follow. The intermediate nodes have the same location as the underlying parameter, but must be accessed via `PathNode.asParameterReturnNode` instead of `PathNode.asNode`. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 6d3c0021858b..b7eeb5b97365 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.7 +lastReleaseVersion: 1.0.0 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 7d43b80b68b9..48ca4c2589b1 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index bfbe60bbef66..96976bd621ba 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/mad/change-notes/2024-05-23-Version1.md b/shared/mad/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/mad/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/mad/change-notes/released/1.0.0.md b/shared/mad/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 6807e3f93874..cbe59d12b053 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 13305f3ad426..df73f02530d7 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.15 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/2024-05-23-Version1.md b/shared/rangeanalysis/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/rangeanalysis/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/rangeanalysis/change-notes/released/1.0.0.md b/shared/rangeanalysis/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index dff35216fc69..b7eeb5b97365 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.15 +lastReleaseVersion: 1.0.0 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index f3c0df380019..ca09becd4f7b 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 91d49f98a5c3..dec8aefc4e59 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/regex/change-notes/2024-05-23-Version1.md b/shared/regex/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/regex/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/regex/change-notes/released/1.0.0.md b/shared/regex/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index cfa976acc1d6..d247d01a2d20 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index b5c824327eec..cd3c330ffd1f 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/ssa/change-notes/2024-05-23-Version1.md b/shared/ssa/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/ssa/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/ssa/change-notes/released/1.0.0.md b/shared/ssa/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index f359310f9b82..fe1a7f1a5ab7 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 4f4b3189bb41..8a8586a0f144 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.15 No user-facing changes. diff --git a/shared/threat-models/change-notes/2024-05-23-Version1.md b/shared/threat-models/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/threat-models/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/threat-models/change-notes/released/1.0.0.md b/shared/threat-models/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index dff35216fc69..b7eeb5b97365 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.15 +lastReleaseVersion: 1.0.0 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 1049675897b7..5a1f6272e699 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.0-dev +version: 1.0.0 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index ed27ac5df69d..d2cdbc966ff6 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/tutorial/change-notes/2024-05-23-Version1.md b/shared/tutorial/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/tutorial/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/tutorial/change-notes/released/1.0.0.md b/shared/tutorial/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 19d07e328efc..803524c07edc 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 0ceea89ca255..63bc1bf2cdc1 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.3 No user-facing changes. diff --git a/shared/typeflow/change-notes/2024-05-23-Version1.md b/shared/typeflow/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/typeflow/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typeflow/change-notes/released/1.0.0.md b/shared/typeflow/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index a24b693d1e7a..b7eeb5b97365 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.3 +lastReleaseVersion: 1.0.0 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index e619b8770886..3829b704b2b0 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 0991b2710758..118546bed3b9 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/typetracking/change-notes/2024-05-23-Version1.md b/shared/typetracking/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/typetracking/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typetracking/change-notes/released/1.0.0.md b/shared/typetracking/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/typetracking/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 5d98c1c8244d..f09a71626d5d 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index ebc537deaa03..27808710519d 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/typos/change-notes/2024-05-23-Version1.md b/shared/typos/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/typos/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typos/change-notes/released/1.0.0.md b/shared/typos/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 2d89f5bdcbd0..6fac92a9701f 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 36324dff52dc..31c2780a6654 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/util/change-notes/2024-05-23-Version1.md b/shared/util/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/util/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/util/change-notes/released/1.0.0.md b/shared/util/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/util/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 1152b588525d..d679f106c76d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index d7831747b120..be5be19f0b22 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.0.3 No user-facing changes. diff --git a/shared/xml/change-notes/2024-05-23-Version1.md b/shared/xml/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/xml/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/xml/change-notes/released/1.0.0.md b/shared/xml/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index a24b693d1e7a..b7eeb5b97365 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.3 +lastReleaseVersion: 1.0.0 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 25de9ee3c18e..c219b0f470b8 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 6a603e61c5f3..fea7ae7478fb 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.2.16 No user-facing changes. diff --git a/shared/yaml/change-notes/2024-05-23-Version1.md b/shared/yaml/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/shared/yaml/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/yaml/change-notes/released/1.0.0.md b/shared/yaml/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 2aa64d9ed07e..b7eeb5b97365 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.16 +lastReleaseVersion: 1.0.0 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index d2d2edfe07be..75338f9faf21 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.0-dev +version: 1.0.0 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index c4a8cd42016a..381e1395cb99 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.3.16 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2024-05-23-Version1.md b/swift/ql/lib/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/swift/ql/lib/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/lib/change-notes/released/1.0.0.md b/swift/ql/lib/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/swift/ql/lib/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 0a6d86fa74fa..b7eeb5b97365 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.3.16 +lastReleaseVersion: 1.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 941253559d6c..a35dad9a62af 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 1.0.0-dev +version: 1.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index b31da8afa3fb..c3333ed27651 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. + ## 0.3.16 No user-facing changes. diff --git a/swift/ql/src/change-notes/2024-05-23-Version1.md b/swift/ql/src/change-notes/2024-05-23-Version1.md deleted file mode 100644 index 5840e51017be..000000000000 --- a/swift/ql/src/change-notes/2024-05-23-Version1.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/src/change-notes/released/1.0.0.md b/swift/ql/src/change-notes/released/1.0.0.md new file mode 100644 index 000000000000..7c7dd01f4051 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.0.md @@ -0,0 +1,5 @@ +## 1.0.0 + +### Breaking Changes + +* CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 0a6d86fa74fa..b7eeb5b97365 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.3.16 +lastReleaseVersion: 1.0.0 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 593cb113d9c6..baa1174690a3 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.0-dev +version: 1.0.0 groups: - swift - queries From a19149032f9c1fb4395beae07754dce38af03daa Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Fri, 31 May 2024 14:49:11 +0000 Subject: [PATCH 6/6] Post-release preparation for codeql-cli-2.17.4 --- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/automodel/src/qlpack.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 35 files changed, 35 insertions(+), 35 deletions(-) diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 653304cedf3c..4d378c492590 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 1.0.0 +version: 1.0.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 9e45007445b8..0627d323d7fd 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.0.0 +version: 1.0.1-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 5129894985fc..547e8e6b45df 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.17 +version: 1.7.18-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index b5e75a5f357f..7a0e5951dc94 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.17 +version: 1.7.18-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index df83381ae532..649168c1ffae 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 1.0.0 +version: 1.0.1-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 89dffcd2dde0..94cbe5ad1bf8 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.0 +version: 1.0.1-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 758aadeeb015..0cd7dfc00ef0 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.0 +version: 1.0.1-dev groups: - go - queries diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index b27f8e259bb7..66044deb083f 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 1.0.0 +version: 1.0.1-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 69888315a902..cd2fc8c0cb74 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.0.0 +version: 1.0.1-dev groups: - go - queries diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 51392dd74c51..e6f5217bb76c 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 1.0.0 +version: 1.0.1-dev groups: - java - automodel diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index fe1c514577fd..45e83a3cf0c6 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 1.0.0 +version: 1.0.1-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 2bf470cf77bc..52bf6158712f 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.0.0 +version: 1.0.1-dev groups: - java - queries diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index fdb76057e7a0..944db62ed2c8 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 1.0.0 +version: 1.0.1-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index b4430ed96259..7a3b75b0c4b3 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.0.0 +version: 1.0.1-dev groups: - javascript - queries diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index ff26865485db..63ed9d042ea6 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.0 +version: 1.0.1-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 9a504703530c..4da96aff3ef2 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 1.0.0 +version: 1.0.1-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 1e69d490d310..8aa9f208f3b7 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.0.0 +version: 1.0.1-dev groups: - python - queries diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 3319997af72e..70272fa2d5f6 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 1.0.0 +version: 1.0.1-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 0e716cf60669..14443f47d49c 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.0.0 +version: 1.0.1-dev groups: - ruby - queries diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 96d6c3f7ec7c..12bb4d63fe16 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 48ca4c2589b1..c27e8e8bbcd3 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index cbe59d12b053..748ba999e342 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index ca09becd4f7b..3273eeee7d85 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index d247d01a2d20..e2200bfafcb5 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index fe1a7f1a5ab7..c3ebeda0aea8 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 5a1f6272e699..82f83c043c0e 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.0 +version: 1.0.1-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 803524c07edc..4d5b90ca5ae6 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 3829b704b2b0..35ac50d1d85c 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index f09a71626d5d..3abaaa6a3ce0 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 6fac92a9701f..f7a01fd5cc32 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index d679f106c76d..751b754e42c1 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: null diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index c219b0f470b8..fee16761da8e 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true dependencies: diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 75338f9faf21..f795f212cec4 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.0 +version: 1.0.1-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index a35dad9a62af..8ba81a1e435d 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 1.0.0 +version: 1.0.1-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index baa1174690a3..8f47d31b9772 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.0 +version: 1.0.1-dev groups: - swift - queries