From 02a1b1efcbe5fcc8ec17954d8b29d17cfc4ca8cc Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 16 Sep 2025 14:14:42 +0000 Subject: [PATCH] Release preparation for version 2.23.1 --- actions/ql/lib/CHANGELOG.md | 4 ++++ actions/ql/lib/change-notes/released/0.4.17.md | 3 +++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 6 ++++++ .../0.6.9.md} | 7 ++++--- actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 10 ++++++++++ cpp/ql/lib/change-notes/2025-09-03-rename-api.md | 4 ---- .../{2025-09-02-vla.md => released/5.6.0.md} | 11 ++++++++--- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 12 ++++++++++++ cpp/ql/src/change-notes/2025-09-03-rename-api.md | 5 ----- .../1.5.0.md} | 12 +++++++++--- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.48.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- csharp/ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.48.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 4 ++++ csharp/ql/lib/change-notes/released/5.2.4.md | 3 +++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 14 ++++++++++++++ .../2025-09-04-database-diagnostics.md | 4 ---- .../2025-09-10-deprecate-foreach-capture.md | 4 ---- .../2025-09-16-default-tostring-enum.md | 4 ---- csharp/ql/src/change-notes/released/1.4.0.md | 13 +++++++++++++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.31.md | 3 +++ go/ql/consistency-queries/codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 7 +++++++ .../4.3.4.md} | 9 +++++---- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 4 ++++ go/ql/src/change-notes/released/1.4.5.md | 3 +++ go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 15 +++++++++++++++ .../2025-07-21-module-import-declarations.md | 5 ----- .../2025-07-23-compact-source-files.md | 4 ---- java/ql/lib/change-notes/2025-09-02-kdf-api.md | 4 ---- .../lib/change-notes/2025-09-02-scoped-values.md | 4 ---- .../lib/change-notes/2025-09-11-assertions-cfg.md | 4 ---- .../change-notes/2025-09-11-support-java-25.md | 4 ---- java/ql/lib/change-notes/released/7.7.0.md | 14 ++++++++++++++ java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 10 ++++++++++ .../2025-09-04-database-diagnostics.md | 4 ---- .../1.8.0.md} | 11 ++++++++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 7 +++++++ .../2.6.11.md} | 7 ++++--- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 14 ++++++++++++++ .../2025-07-31-cors-move-out-of-experimental.md | 4 ---- ...2025-08-27-remote-property-injection-update.md | 4 ---- .../src/change-notes/2025-09-05-typescript-5.9.md | 5 ----- .../ql/src/change-notes/2025-09-12-off-by-one.md | 4 ---- .../2025-09-16-promise-try-array-with.md | 4 ---- javascript/ql/src/change-notes/released/2.1.0.md | 13 +++++++++++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../suite-helpers/change-notes/released/1.0.31.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 4 ++++ python/ql/lib/change-notes/released/4.0.15.md | 3 +++ python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 6 ++++++ .../1.6.5.md} | 9 +++++---- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 4 ++++ ruby/ql/lib/change-notes/released/5.0.4.md | 3 +++ ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 ++++ ruby/ql/src/change-notes/released/1.4.5.md | 3 +++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 6 ++++++ .../{2025-09-12-cookie.md => released/0.1.16.md} | 7 ++++--- rust/ql/lib/codeql-pack.release.yml | 2 +- rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 10 ++++++++++ .../change-notes/2025-09-09-request-forgery.md | 4 ---- .../0.1.16.md} | 11 ++++++++--- rust/ql/src/codeql-pack.release.yml | 2 +- rust/ql/src/qlpack.yml | 2 +- shared/concepts/CHANGELOG.md | 4 ++++ shared/concepts/change-notes/released/0.0.5.md | 3 +++ shared/concepts/codeql-pack.release.yml | 2 +- shared/concepts/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ++++ .../controlflow/change-notes/released/2.0.15.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 ++++ shared/dataflow/change-notes/released/2.0.15.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.31.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/quantum/CHANGELOG.md | 4 ++++ shared/quantum/change-notes/released/0.0.9.md | 3 +++ shared/quantum/codeql-pack.release.yml | 2 +- shared/quantum/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../rangeanalysis/change-notes/released/1.0.31.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.31.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ++++ shared/ssa/change-notes/released/2.0.7.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../threat-models/change-notes/released/1.0.31.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ shared/tutorial/change-notes/released/1.0.31.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ shared/typeflow/change-notes/released/1.0.31.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typeinference/CHANGELOG.md | 4 ++++ .../typeinference/change-notes/released/0.0.12.md | 3 +++ shared/typeinference/codeql-pack.release.yml | 2 +- shared/typeinference/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../typetracking/change-notes/released/2.0.15.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.31.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.18.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.31.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.31.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 ++++++ .../5.0.7.md} | 7 ++++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 ++++ swift/ql/src/change-notes/released/1.2.5.md | 3 +++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 182 files changed, 500 insertions(+), 189 deletions(-) create mode 100644 actions/ql/lib/change-notes/released/0.4.17.md rename actions/ql/src/change-notes/{2025-09-05-file-coverage.md => released/0.6.9.md} (66%) delete mode 100644 cpp/ql/lib/change-notes/2025-09-03-rename-api.md rename cpp/ql/lib/change-notes/{2025-09-02-vla.md => released/5.6.0.md} (57%) delete mode 100644 cpp/ql/src/change-notes/2025-09-03-rename-api.md rename cpp/ql/src/change-notes/{2025-09-11-queries-demoted.md => released/1.5.0.md} (59%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md create mode 100644 csharp/ql/lib/change-notes/released/5.2.4.md delete mode 100644 csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md delete mode 100644 csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md delete mode 100644 csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md create mode 100644 csharp/ql/src/change-notes/released/1.4.0.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.31.md rename go/ql/lib/change-notes/{2025-07-15-path-injection-sanitizers.md => released/4.3.4.md} (77%) create mode 100644 go/ql/src/change-notes/released/1.4.5.md delete mode 100644 java/ql/lib/change-notes/2025-07-21-module-import-declarations.md delete mode 100644 java/ql/lib/change-notes/2025-07-23-compact-source-files.md delete mode 100644 java/ql/lib/change-notes/2025-09-02-kdf-api.md delete mode 100644 java/ql/lib/change-notes/2025-09-02-scoped-values.md delete mode 100644 java/ql/lib/change-notes/2025-09-11-assertions-cfg.md delete mode 100644 java/ql/lib/change-notes/2025-09-11-support-java-25.md create mode 100644 java/ql/lib/change-notes/released/7.7.0.md delete mode 100644 java/ql/src/change-notes/2025-09-04-database-diagnostics.md rename java/ql/src/change-notes/{2025-09-15-nullness-reimp.md => released/1.8.0.md} (51%) rename javascript/ql/lib/change-notes/{2025-09-15-promisifications.md => released/2.6.11.md} (85%) delete mode 100644 javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md delete mode 100644 javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md delete mode 100644 javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md delete mode 100644 javascript/ql/src/change-notes/2025-09-12-off-by-one.md delete mode 100644 javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md create mode 100644 javascript/ql/src/change-notes/released/2.1.0.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.31.md create mode 100644 python/ql/lib/change-notes/released/4.0.15.md rename python/ql/src/change-notes/{2025-06-04-missing-multiple-calls-to-init-del.md => released/1.6.5.md} (75%) create mode 100644 ruby/ql/lib/change-notes/released/5.0.4.md create mode 100644 ruby/ql/src/change-notes/released/1.4.5.md rename rust/ql/lib/change-notes/{2025-09-12-cookie.md => released/0.1.16.md} (63%) delete mode 100644 rust/ql/src/change-notes/2025-09-09-request-forgery.md rename rust/ql/src/change-notes/{2025-09-04-database-diagnostics.md => released/0.1.16.md} (52%) create mode 100644 shared/concepts/change-notes/released/0.0.5.md create mode 100644 shared/controlflow/change-notes/released/2.0.15.md create mode 100644 shared/dataflow/change-notes/released/2.0.15.md create mode 100644 shared/mad/change-notes/released/1.0.31.md create mode 100644 shared/quantum/change-notes/released/0.0.9.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.31.md create mode 100644 shared/regex/change-notes/released/1.0.31.md create mode 100644 shared/ssa/change-notes/released/2.0.7.md create mode 100644 shared/threat-models/change-notes/released/1.0.31.md create mode 100644 shared/tutorial/change-notes/released/1.0.31.md create mode 100644 shared/typeflow/change-notes/released/1.0.31.md create mode 100644 shared/typeinference/change-notes/released/0.0.12.md create mode 100644 shared/typetracking/change-notes/released/2.0.15.md create mode 100644 shared/typos/change-notes/released/1.0.31.md create mode 100644 shared/util/change-notes/released/2.0.18.md create mode 100644 shared/xml/change-notes/released/1.0.31.md create mode 100644 shared/yaml/change-notes/released/1.0.31.md rename swift/ql/lib/change-notes/{2025-09-08-swift-6.1.3.md => released/5.0.7.md} (50%) create mode 100644 swift/ql/src/change-notes/released/1.2.5.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 5009104e9af3..60f6a45ea945 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.17 + +No user-facing changes. + ## 0.4.16 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.17.md b/actions/ql/lib/change-notes/released/0.4.17.md new file mode 100644 index 000000000000..30a27b84b732 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.17.md @@ -0,0 +1,3 @@ +## 0.4.17 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 0664e01a1ddb..d5b31a0cac9f 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.16 +lastReleaseVersion: 0.4.17 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 311ef4d5ef66..55e8a97e16bb 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.17-dev +version: 0.4.17 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 265e67e6a89b..78b4591c5210 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.6.9 + +### Minor Analysis Improvements + +* Actions analysis now reports file coverage information on the CodeQL status page. + ## 0.6.8 No user-facing changes. diff --git a/actions/ql/src/change-notes/2025-09-05-file-coverage.md b/actions/ql/src/change-notes/released/0.6.9.md similarity index 66% rename from actions/ql/src/change-notes/2025-09-05-file-coverage.md rename to actions/ql/src/change-notes/released/0.6.9.md index 27f026146477..fd1d956946b7 100644 --- a/actions/ql/src/change-notes/2025-09-05-file-coverage.md +++ b/actions/ql/src/change-notes/released/0.6.9.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.6.9 + +### Minor Analysis Improvements + * Actions analysis now reports file coverage information on the CodeQL status page. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index cad7cba6ce36..f03da398190a 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.8 +lastReleaseVersion: 0.6.9 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 4eae56a5c139..ea42e41ebb88 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.9-dev +version: 0.6.9 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 705432b565de..cfe24937b744 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 5.6.0 + +### Deprecated APIs + +* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. + +### New Features + +* Added predicates `getTransitiveNumberOfVlaDimensionStmts`, `getTransitiveVlaDimensionStmt`, and `getParentVlaDecl` to `VlaDeclStmt` for handling `VlaDeclStmt`s whose base type is defined in terms of another `VlaDeclStmt` via a `typedef`. + ## 5.5.0 ### New Features diff --git a/cpp/ql/lib/change-notes/2025-09-03-rename-api.md b/cpp/ql/lib/change-notes/2025-09-03-rename-api.md deleted file mode 100644 index 23c9fa3c046a..000000000000 --- a/cpp/ql/lib/change-notes/2025-09-03-rename-api.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. diff --git a/cpp/ql/lib/change-notes/2025-09-02-vla.md b/cpp/ql/lib/change-notes/released/5.6.0.md similarity index 57% rename from cpp/ql/lib/change-notes/2025-09-02-vla.md rename to cpp/ql/lib/change-notes/released/5.6.0.md index 0f945b565a65..a21fadb3bf33 100644 --- a/cpp/ql/lib/change-notes/2025-09-02-vla.md +++ b/cpp/ql/lib/change-notes/released/5.6.0.md @@ -1,4 +1,9 @@ ---- -category: feature ---- +## 5.6.0 + +### Deprecated APIs + +* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. + +### New Features + * Added predicates `getTransitiveNumberOfVlaDimensionStmts`, `getTransitiveVlaDimensionStmt`, and `getParentVlaDecl` to `VlaDeclStmt` for handling `VlaDeclStmt`s whose base type is defined in terms of another `VlaDeclStmt` via a `typedef`. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 4b8cf9533c17..df73323b21f0 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.5.0 +lastReleaseVersion: 5.6.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 2b9af14a4b35..6e1a13317a02 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 5.5.1-dev +version: 5.6.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index eb805dc1af6e..0cafbd23191b 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.5.0 + +### Major Analysis Improvements + +* The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long`, `cpp/implicit-function-declaration` and `cpp/suspicious-add-sizeof` have had their precisions reduced from `high` to `medium`. They will also now give alerts for projects built with `build-mode: none`. +* The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long` and `cpp/suspicious-add-sizeof` are no longer included in the `code-scanning` suite. + +### Bug Fixes + +* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. +* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. + ## 1.4.7 ### Bug Fixes diff --git a/cpp/ql/src/change-notes/2025-09-03-rename-api.md b/cpp/ql/src/change-notes/2025-09-03-rename-api.md deleted file mode 100644 index 5fd788ef76f5..000000000000 --- a/cpp/ql/src/change-notes/2025-09-03-rename-api.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. -* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. diff --git a/cpp/ql/src/change-notes/2025-09-11-queries-demoted.md b/cpp/ql/src/change-notes/released/1.5.0.md similarity index 59% rename from cpp/ql/src/change-notes/2025-09-11-queries-demoted.md rename to cpp/ql/src/change-notes/released/1.5.0.md index 7150c08206b3..383825331fff 100644 --- a/cpp/ql/src/change-notes/2025-09-11-queries-demoted.md +++ b/cpp/ql/src/change-notes/released/1.5.0.md @@ -1,5 +1,11 @@ ---- -category: majorAnalysis ---- +## 1.5.0 + +### Major Analysis Improvements + * The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long`, `cpp/implicit-function-declaration` and `cpp/suspicious-add-sizeof` have had their precisions reduced from `high` to `medium`. They will also now give alerts for projects built with `build-mode: none`. * The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long` and `cpp/suspicious-add-sizeof` are no longer included in the `code-scanning` suite. + +### Bug Fixes + +* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. +* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 163362bd6321..639f80c43417 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.7 +lastReleaseVersion: 1.5.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 18637c336b9f..5a74eac8d615 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.4.8-dev +version: 1.5.0 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 7f3f4d436831..41b8b166a6c6 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.48 + +No user-facing changes. + ## 1.7.47 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md new file mode 100644 index 000000000000..5f90b4d64193 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md @@ -0,0 +1,3 @@ +## 1.7.48 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 21f0fc0de3c1..f5fe8023097c 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.47 +lastReleaseVersion: 1.7.48 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 826e53b76815..8b069392a0b3 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.48-dev +version: 1.7.48 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 7f3f4d436831..41b8b166a6c6 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.48 + +No user-facing changes. + ## 1.7.47 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md new file mode 100644 index 000000000000..5f90b4d64193 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md @@ -0,0 +1,3 @@ +## 1.7.48 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 21f0fc0de3c1..f5fe8023097c 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.47 +lastReleaseVersion: 1.7.48 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 468bd64cbd06..197f3182a634 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.48-dev +version: 1.7.48 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 0aca82e83107..cb639225e7d2 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.2.4 + +No user-facing changes. + ## 5.2.3 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/released/5.2.4.md b/csharp/ql/lib/change-notes/released/5.2.4.md new file mode 100644 index 000000000000..18f54ba122db --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.2.4.md @@ -0,0 +1,3 @@ +## 5.2.4 + +No user-facing changes. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index f7fd1ec5b57a..fc4dc64578b7 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.2.3 +lastReleaseVersion: 5.2.4 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index d7b4d0f175cd..13982fd50da9 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.2.4-dev +version: 5.2.4 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index e1109181fca3..e044a3dbb4f7 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,17 @@ +## 1.4.0 + +### Deprecated Queries + +* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. + +### Minor Analysis Improvements + +* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. + +### Bug Fixes + +* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. + ## 1.3.4 No user-facing changes. diff --git a/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md b/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md deleted file mode 100644 index 8bf63438089d..000000000000 --- a/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md b/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md deleted file mode 100644 index 5628e9496286..000000000000 --- a/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. diff --git a/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md b/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md deleted file mode 100644 index 30ba96e0b01f..000000000000 --- a/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. diff --git a/csharp/ql/src/change-notes/released/1.4.0.md b/csharp/ql/src/change-notes/released/1.4.0.md new file mode 100644 index 000000000000..43d887f928ae --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.4.0.md @@ -0,0 +1,13 @@ +## 1.4.0 + +### Deprecated Queries + +* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. + +### Minor Analysis Improvements + +* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. + +### Bug Fixes + +* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8263ddf2c8b8..b8b2e97d5086 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.4 +lastReleaseVersion: 1.4.0 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index edb6f9dbe113..88dd741a89d0 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.3.5-dev +version: 1.4.0 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index c30f8de8bc9b..d50406235570 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.31.md b/go/ql/consistency-queries/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 574d10a17525..365c82cf84c4 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.31-dev +version: 1.0.31 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index e2a12de418a7..50d61186f738 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.3.4 + +### Minor Analysis Improvements + +* The second argument of the `CreateTemp` function, from the `os` package, is no longer a path-injection sink due to proper sanitization by Go. +* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. + ## 4.3.3 No user-facing changes. diff --git a/go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md b/go/ql/lib/change-notes/released/4.3.4.md similarity index 77% rename from go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md rename to go/ql/lib/change-notes/released/4.3.4.md index 004eb973de30..cc1b662d14c4 100644 --- a/go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md +++ b/go/ql/lib/change-notes/released/4.3.4.md @@ -1,5 +1,6 @@ ---- -category: minorAnalysis ---- +## 4.3.4 + +### Minor Analysis Improvements + * The second argument of the `CreateTemp` function, from the `os` package, is no longer a path-injection sink due to proper sanitization by Go. -* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. \ No newline at end of file +* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index d7b7294771fb..f755e0936a72 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.3 +lastReleaseVersion: 4.3.4 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 8c172af1e975..77b35bffac24 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.3.4-dev +version: 4.3.4 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 7ec3a3eab648..c3b9c32ff329 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.5 + +No user-facing changes. + ## 1.4.4 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.4.5.md b/go/ql/src/change-notes/released/1.4.5.md new file mode 100644 index 000000000000..930163bb5ae1 --- /dev/null +++ b/go/ql/src/change-notes/released/1.4.5.md @@ -0,0 +1,3 @@ +## 1.4.5 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 1dfca6daa3b1..a74b6b08d860 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.4 +lastReleaseVersion: 1.4.5 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 6b36ad98c9df..8060d5f6b3db 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.4.5-dev +version: 1.4.5 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 448b04bdc24e..a6b4649e42ee 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 7.7.0 + +### New Features + +* The Java extractor and QL libraries now support Java 25. +* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. +* Added support for Java 25 module import declarations. +* Add `ModuleImportDeclaration` class. + +### Minor Analysis Improvements + +* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). +* Added taint flow model for `java.crypto.KDF`. +* Added taint flow model for `java.lang.ScopedValue`. + ## 7.6.1 No user-facing changes. diff --git a/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md b/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md deleted file mode 100644 index 56c7972399a6..000000000000 --- a/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* Added support for Java 25 module import declarations. -* Add `ModuleImportDeclaration` class. diff --git a/java/ql/lib/change-notes/2025-07-23-compact-source-files.md b/java/ql/lib/change-notes/2025-07-23-compact-source-files.md deleted file mode 100644 index 277ce14398ed..000000000000 --- a/java/ql/lib/change-notes/2025-07-23-compact-source-files.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. diff --git a/java/ql/lib/change-notes/2025-09-02-kdf-api.md b/java/ql/lib/change-notes/2025-09-02-kdf-api.md deleted file mode 100644 index db812e907780..000000000000 --- a/java/ql/lib/change-notes/2025-09-02-kdf-api.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added taint flow model for `java.crypto.KDF`. \ No newline at end of file diff --git a/java/ql/lib/change-notes/2025-09-02-scoped-values.md b/java/ql/lib/change-notes/2025-09-02-scoped-values.md deleted file mode 100644 index 8758d1268f36..000000000000 --- a/java/ql/lib/change-notes/2025-09-02-scoped-values.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added taint flow model for `java.lang.ScopedValue`. \ No newline at end of file diff --git a/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md b/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md deleted file mode 100644 index 34ff19d685e4..000000000000 --- a/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). diff --git a/java/ql/lib/change-notes/2025-09-11-support-java-25.md b/java/ql/lib/change-notes/2025-09-11-support-java-25.md deleted file mode 100644 index bcd78fd8fda0..000000000000 --- a/java/ql/lib/change-notes/2025-09-11-support-java-25.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* The Java extractor and QL libraries now support Java 25. \ No newline at end of file diff --git a/java/ql/lib/change-notes/released/7.7.0.md b/java/ql/lib/change-notes/released/7.7.0.md new file mode 100644 index 000000000000..f33b45cd74d8 --- /dev/null +++ b/java/ql/lib/change-notes/released/7.7.0.md @@ -0,0 +1,14 @@ +## 7.7.0 + +### New Features + +* The Java extractor and QL libraries now support Java 25. +* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. +* Added support for Java 25 module import declarations. +* Add `ModuleImportDeclaration` class. + +### Minor Analysis Improvements + +* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). +* Added taint flow model for `java.crypto.KDF`. +* Added taint flow model for `java.lang.ScopedValue`. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 0e73c8335724..5c876a864fc2 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.6.1 +lastReleaseVersion: 7.7.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 69cadd5a6b06..77416e899dcb 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.6.2-dev +version: 7.7.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index ffd5648cddf5..022442a1628a 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.8.0 + +### Major Analysis Improvements + +* The implementation of `java/dereferenced-value-may-be-null` has been completely replaced with a new general control-flow reachability library. This improves precision by reducing false positives. However, since the entire calculation has been reworked, there can be small corner cases where precision regressions might occur and new false positives may occur, but these cases should be rare. + +### Bug Fixes + +* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. + ## 1.7.0 ### New Queries diff --git a/java/ql/src/change-notes/2025-09-04-database-diagnostics.md b/java/ql/src/change-notes/2025-09-04-database-diagnostics.md deleted file mode 100644 index ca035346f9f1..000000000000 --- a/java/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/java/ql/src/change-notes/2025-09-15-nullness-reimp.md b/java/ql/src/change-notes/released/1.8.0.md similarity index 51% rename from java/ql/src/change-notes/2025-09-15-nullness-reimp.md rename to java/ql/src/change-notes/released/1.8.0.md index 46698a9a8bcf..f8da72566e24 100644 --- a/java/ql/src/change-notes/2025-09-15-nullness-reimp.md +++ b/java/ql/src/change-notes/released/1.8.0.md @@ -1,4 +1,9 @@ ---- -category: majorAnalysis ---- +## 1.8.0 + +### Major Analysis Improvements + * The implementation of `java/dereferenced-value-may-be-null` has been completely replaced with a new general control-flow reachability library. This improves precision by reducing false positives. However, since the entire calculation has been reworked, there can be small corner cases where precision regressions might occur and new false positives may occur, but these cases should be rare. + +### Bug Fixes + +* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index d1184cc67507..dc8a37cc443d 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.0 +lastReleaseVersion: 1.8.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8e1ae28dd6f5..947cfcb6d134 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.7.1-dev +version: 1.8.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index d45d55f6a36f..b98534e791d6 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.6.11 + +### Minor Analysis Improvements + +* Added modeling for promisification libraries `@gar/promisify`, `es6-promisify`, `util.promisify`, `thenify-all`, `call-me-maybe`, `@google-cloud/promisify`, and `util-promisify`. +* Data flow is now tracked through promisified user-defined functions. + ## 2.6.10 ### Minor Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-09-15-promisifications.md b/javascript/ql/lib/change-notes/released/2.6.11.md similarity index 85% rename from javascript/ql/lib/change-notes/2025-09-15-promisifications.md rename to javascript/ql/lib/change-notes/released/2.6.11.md index 8864ab23a022..b9a47cae76c5 100644 --- a/javascript/ql/lib/change-notes/2025-09-15-promisifications.md +++ b/javascript/ql/lib/change-notes/released/2.6.11.md @@ -1,5 +1,6 @@ ---- -category: minorAnalysis ---- +## 2.6.11 + +### Minor Analysis Improvements + * Added modeling for promisification libraries `@gar/promisify`, `es6-promisify`, `util.promisify`, `thenify-all`, `call-me-maybe`, `@google-cloud/promisify`, and `util-promisify`. * Data flow is now tracked through promisified user-defined functions. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index aa42bd9f12ad..a31eb42966ca 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.10 +lastReleaseVersion: 2.6.11 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index e233d83e328b..3656daac7b72 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.11-dev +version: 2.6.11 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index ab471438cb11..619bc14bf299 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,17 @@ +## 2.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.9 +* Added support for `import defer` syntax in JavaScript and TypeScript. + +### Minor Analysis Improvements + +* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. +* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. +* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. +* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. + ## 2.0.3 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md b/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md deleted file mode 100644 index db04cbc7d930..000000000000 --- a/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. diff --git a/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md b/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md deleted file mode 100644 index 17fe6123cceb..000000000000 --- a/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. \ No newline at end of file diff --git a/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md b/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md deleted file mode 100644 index bb0b6420200b..000000000000 --- a/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Added support for TypeScript 5.9 -* Added support for `import defer` syntax in JavaScript and TypeScript. diff --git a/javascript/ql/src/change-notes/2025-09-12-off-by-one.md b/javascript/ql/src/change-notes/2025-09-12-off-by-one.md deleted file mode 100644 index 42a97195d4f3..000000000000 --- a/javascript/ql/src/change-notes/2025-09-12-off-by-one.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. diff --git a/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md b/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md deleted file mode 100644 index a61a78d7f602..000000000000 --- a/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. diff --git a/javascript/ql/src/change-notes/released/2.1.0.md b/javascript/ql/src/change-notes/released/2.1.0.md new file mode 100644 index 000000000000..e0ef5ddd6e15 --- /dev/null +++ b/javascript/ql/src/change-notes/released/2.1.0.md @@ -0,0 +1,13 @@ +## 2.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.9 +* Added support for `import defer` syntax in JavaScript and TypeScript. + +### Minor Analysis Improvements + +* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. +* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. +* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. +* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index fabf1e865966..487a1a58b2b8 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.3 +lastReleaseVersion: 2.1.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index b754f04005d9..0b379a03d5bb 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 2.0.4-dev +version: 2.1.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 4a5e75cac92a..6b54042fef32 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.31.md b/misc/suite-helpers/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 16add0c54642..a0249432210d 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.31-dev +version: 1.0.31 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index eddd592be743..6a4fefd44467 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.0.15 + +No user-facing changes. + ## 4.0.14 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/released/4.0.15.md b/python/ql/lib/change-notes/released/4.0.15.md new file mode 100644 index 000000000000..de5387e3da3f --- /dev/null +++ b/python/ql/lib/change-notes/released/4.0.15.md @@ -0,0 +1,3 @@ +## 4.0.15 + +No user-facing changes. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 5e4c777a3399..eef62765883a 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.14 +lastReleaseVersion: 4.0.15 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 71746d34c4e3..a3e40c6586e4 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.15-dev +version: 4.0.15 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 0c22d526f395..de3fc1ddf2b5 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.6.5 + +### Minor Analysis Improvements + +* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. + ## 1.6.4 ### Minor Analysis Improvements diff --git a/python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md b/python/ql/src/change-notes/released/1.6.5.md similarity index 75% rename from python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md rename to python/ql/src/change-notes/released/1.6.5.md index 5dfe5c2b8413..e9e53221424d 100644 --- a/python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md +++ b/python/ql/src/change-notes/released/1.6.5.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. \ No newline at end of file +## 1.6.5 + +### Minor Analysis Improvements + +* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 1910e09d6a6a..031532705578 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.4 +lastReleaseVersion: 1.6.5 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 3cc58c14fafb..ec238b337987 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.6.5-dev +version: 1.6.5 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 560bf17bc51c..b9333de9c5dd 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.0.4 + +No user-facing changes. + ## 5.0.3 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/released/5.0.4.md b/ruby/ql/lib/change-notes/released/5.0.4.md new file mode 100644 index 000000000000..5c625c33d52f --- /dev/null +++ b/ruby/ql/lib/change-notes/released/5.0.4.md @@ -0,0 +1,3 @@ +## 5.0.4 + +No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 6997554f6ddd..8cb0167caf0c 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.3 +lastReleaseVersion: 5.0.4 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 89f162e0ed9e..a76c7d0b90af 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 5.0.4-dev +version: 5.0.4 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 29b4ff27bc09..40209ec84bde 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.5 + +No user-facing changes. + ## 1.4.4 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.4.5.md b/ruby/ql/src/change-notes/released/1.4.5.md new file mode 100644 index 000000000000..930163bb5ae1 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.4.5.md @@ -0,0 +1,3 @@ +## 1.4.5 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 1dfca6daa3b1..a74b6b08d860 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.4 +lastReleaseVersion: 1.4.5 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index da157badc900..cea6e01dce68 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.4.5-dev +version: 1.4.5 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 6ff2f1072c71..809479e5fec4 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.1.16 + +### Minor Analysis Improvements + +* Added cryptography related models for the `cookie` and `biscotti` crates. + ## 0.1.15 ### Major Analysis Improvements diff --git a/rust/ql/lib/change-notes/2025-09-12-cookie.md b/rust/ql/lib/change-notes/released/0.1.16.md similarity index 63% rename from rust/ql/lib/change-notes/2025-09-12-cookie.md rename to rust/ql/lib/change-notes/released/0.1.16.md index 04fa37d1d2d1..eb630642345d 100644 --- a/rust/ql/lib/change-notes/2025-09-12-cookie.md +++ b/rust/ql/lib/change-notes/released/0.1.16.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.1.16 + +### Minor Analysis Improvements + * Added cryptography related models for the `cookie` and `biscotti` crates. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 747196347438..a01dca921616 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.15 +lastReleaseVersion: 0.1.16 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 6b78c2d50ad2..d0e9a11ec16f 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.16-dev +version: 0.1.16 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index b8ca5b715684..48f64efbcdb7 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.1.16 + +### New Queries + +* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. + +### Bug Fixes + +* The message for `rust/diagnostic/database-quality` has been updated to include detailed database health metrics. These changes are visible on the tool status page. + ## 0.1.15 ### New Queries diff --git a/rust/ql/src/change-notes/2025-09-09-request-forgery.md b/rust/ql/src/change-notes/2025-09-09-request-forgery.md deleted file mode 100644 index 991dd0918cd4..000000000000 --- a/rust/ql/src/change-notes/2025-09-09-request-forgery.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. \ No newline at end of file diff --git a/rust/ql/src/change-notes/2025-09-04-database-diagnostics.md b/rust/ql/src/change-notes/released/0.1.16.md similarity index 52% rename from rust/ql/src/change-notes/2025-09-04-database-diagnostics.md rename to rust/ql/src/change-notes/released/0.1.16.md index b578fcef1411..97666aba677d 100644 --- a/rust/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ b/rust/ql/src/change-notes/released/0.1.16.md @@ -1,4 +1,9 @@ ---- -category: fix ---- +## 0.1.16 + +### New Queries + +* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. + +### Bug Fixes + * The message for `rust/diagnostic/database-quality` has been updated to include detailed database health metrics. These changes are visible on the tool status page. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 747196347438..a01dca921616 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.15 +lastReleaseVersion: 0.1.16 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 54c742df0b51..8debbae1f51a 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.16-dev +version: 0.1.16 groups: - rust - queries diff --git a/shared/concepts/CHANGELOG.md b/shared/concepts/CHANGELOG.md index 88abeb21fd8c..bac19b9b77f2 100644 --- a/shared/concepts/CHANGELOG.md +++ b/shared/concepts/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.5 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/concepts/change-notes/released/0.0.5.md b/shared/concepts/change-notes/released/0.0.5.md new file mode 100644 index 000000000000..766ec2723b56 --- /dev/null +++ b/shared/concepts/change-notes/released/0.0.5.md @@ -0,0 +1,3 @@ +## 0.0.5 + +No user-facing changes. diff --git a/shared/concepts/codeql-pack.release.yml b/shared/concepts/codeql-pack.release.yml index ec411a674bcd..bb45a1ab0182 100644 --- a/shared/concepts/codeql-pack.release.yml +++ b/shared/concepts/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/shared/concepts/qlpack.yml b/shared/concepts/qlpack.yml index 151939d739aa..5bd473ce43bc 100644 --- a/shared/concepts/qlpack.yml +++ b/shared/concepts/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/concepts -version: 0.0.5-dev +version: 0.0.5 groups: shared library: true dependencies: diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 7e3580fae376..9b9c04fd8d8d 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.15.md b/shared/controlflow/change-notes/released/2.0.15.md new file mode 100644 index 000000000000..3b59db4224a0 --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 23aa0864b298..0377ae283a31 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index e1647c3a2f4a..ab574bfdbac6 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.15-dev +version: 2.0.15 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index b5b86ffbccba..1a867888e89d 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.15.md b/shared/dataflow/change-notes/released/2.0.15.md new file mode 100644 index 000000000000..3b59db4224a0 --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 23aa0864b298..0377ae283a31 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 62a66a7e228a..9799550c8361 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.15-dev +version: 2.0.15 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index bd3e670038ce..e6cf183a1d4d 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.31.md b/shared/mad/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 33968071a421..e974c131a88b 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index fba2a8703562..a59e560c4155 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.9 + +No user-facing changes. + ## 0.0.8 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.9.md b/shared/quantum/change-notes/released/0.0.9.md new file mode 100644 index 000000000000..c9e17c6d6cf2 --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.9.md @@ -0,0 +1,3 @@ +## 0.0.9 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index 58fdc6b45deb..ecdd64fbab86 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.8 +lastReleaseVersion: 0.0.9 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 023d04f544df..8f5a9260f27a 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.9-dev +version: 0.0.9 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index e64dff3b1e69..104664809001 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.31.md b/shared/rangeanalysis/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 5ee5c466a3df..bea42fd1b619 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 11353af62b14..3b3fcb5a55f7 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.31.md b/shared/regex/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 30748219abbc..28cdc4285882 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 5a9cf1a7175a..e7e17bf044b2 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.7 + +No user-facing changes. + ## 2.0.6 No user-facing changes. diff --git a/shared/ssa/change-notes/released/2.0.7.md b/shared/ssa/change-notes/released/2.0.7.md new file mode 100644 index 000000000000..4eb1353458c2 --- /dev/null +++ b/shared/ssa/change-notes/released/2.0.7.md @@ -0,0 +1,3 @@ +## 2.0.7 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index fbbc03c76427..08d5e9594498 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.6 +lastReleaseVersion: 2.0.7 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 1bb80db8eb84..a944c9d7ab4c 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 2.0.7-dev +version: 2.0.7 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index c30f8de8bc9b..d50406235570 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.31.md b/shared/threat-models/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 4295c7e7024d..005cbadd38b1 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.31-dev +version: 1.0.31 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 61441b610612..f4a80412ca8c 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.31.md b/shared/tutorial/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index f640ccc3116f..09f9013ac103 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 94df766d756c..bf4296980228 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.31.md b/shared/typeflow/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index f98b15e15406..b777138b0008 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index d9dd6b6f2e25..83a42fb05515 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.12 + +No user-facing changes. + ## 0.0.11 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.12.md b/shared/typeinference/change-notes/released/0.0.12.md new file mode 100644 index 000000000000..0e206033bc47 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.12.md @@ -0,0 +1,3 @@ +## 0.0.12 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index e679dc420925..997fb8da83cd 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.11 +lastReleaseVersion: 0.0.12 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index ca81b09ba49a..5fd940634b31 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.12-dev +version: 0.0.12 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 4e7d55fc700a..1372c8c89ea1 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.15.md b/shared/typetracking/change-notes/released/2.0.15.md new file mode 100644 index 000000000000..3b59db4224a0 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 23aa0864b298..0377ae283a31 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 95228f4b0d70..f982bade08da 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.15-dev +version: 2.0.15 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 37548ac47d54..c44b941f9e33 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.31.md b/shared/typos/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 42c6e4df22eb..8885de0dbd06 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 193ce4e9521b..d9169a8d5d87 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.18 + +No user-facing changes. + ## 2.0.17 ### Minor Analysis Improvements diff --git a/shared/util/change-notes/released/2.0.18.md b/shared/util/change-notes/released/2.0.18.md new file mode 100644 index 000000000000..11e398dac31a --- /dev/null +++ b/shared/util/change-notes/released/2.0.18.md @@ -0,0 +1,3 @@ +## 2.0.18 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index a5f7c15c020f..16342205c738 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.17 +lastReleaseVersion: 2.0.18 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 2587ddb147ae..703dee01cba4 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.18-dev +version: 2.0.18 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 962044915369..59ae3e2581a1 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.31.md b/shared/xml/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 4e9a5bf0a63a..6b8d051c622a 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 67e07b084672..2254f38fb9ff 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.31.md b/shared/yaml/change-notes/released/1.0.31.md new file mode 100644 index 000000000000..b2642bbb5f89 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index f04640951dec..f5bdc98ffc82 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 56aa47072f0d..b443b23dac2d 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.31-dev +version: 1.0.31 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index cef716a25783..7138ed02a2b1 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 5.0.7 + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.3. + ## 5.0.6 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md b/swift/ql/lib/change-notes/released/5.0.7.md similarity index 50% rename from swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md rename to swift/ql/lib/change-notes/released/5.0.7.md index 7d2cde3c4214..f10f4382e266 100644 --- a/swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md +++ b/swift/ql/lib/change-notes/released/5.0.7.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 5.0.7 + +### Minor Analysis Improvements + * Updated to allow analysis of Swift 6.1.3. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index cc6fded2554d..accf4086d8ac 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.6 +lastReleaseVersion: 5.0.7 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 451e86b8b3d3..6069c9b7ab1a 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 5.0.7-dev +version: 5.0.7 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 58d42ca78132..eac658646174 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.2.5 + +No user-facing changes. + ## 1.2.4 ### Bug Fixes diff --git a/swift/ql/src/change-notes/released/1.2.5.md b/swift/ql/src/change-notes/released/1.2.5.md new file mode 100644 index 000000000000..c805dc2cd4c3 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.2.5.md @@ -0,0 +1,3 @@ +## 1.2.5 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 172090f46b6d..40355f0807f9 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.4 +lastReleaseVersion: 1.2.5 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 7d0821afdd77..61d22677b832 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.2.5-dev +version: 1.2.5 groups: - swift - queries