diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index ce81d2262f81..ddc9ef77e02d 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/lib/change-notes/2025-01-20-bash.md b/actions/ql/lib/change-notes/2025-01-20-bash.md deleted file mode 100644 index fe380d757013..000000000000 --- a/actions/ql/lib/change-notes/2025-01-20-bash.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. \ No newline at end of file diff --git a/actions/ql/lib/change-notes/2025-01-22-version.md b/actions/ql/lib/change-notes/2025-01-22-version.md deleted file mode 100644 index 316fdfd4d541..000000000000 --- a/actions/ql/lib/change-notes/2025-01-22-version.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). \ No newline at end of file diff --git a/actions/ql/lib/change-notes/released/0.4.2.md b/actions/ql/lib/change-notes/released/0.4.2.md new file mode 100644 index 000000000000..eeeca2152d63 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.2.md @@ -0,0 +1,6 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 89fa3a871807..94c5b17423cc 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 58952f7e2bb5..2392397c0a34 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.2-dev +version: 0.4.3-dev library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 3eac1f799870..02c0e793c976 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.2 + +No user-facing changes. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.4.2.md b/actions/ql/src/change-notes/released/0.4.2.md new file mode 100644 index 000000000000..2278d6321e46 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.4.2.md @@ -0,0 +1,3 @@ +## 0.4.2 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 89fa3a871807..94c5b17423cc 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 4343767363af..d7575be7f77e 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.2-dev +version: 0.4.3-dev library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index fa7a301d0433..0d2244838256 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. +* New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. +* A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. + ## 3.2.0 ### New Features diff --git a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 20b2c973cc3c..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md b/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md deleted file mode 100644 index 3f876f2271d9..000000000000 --- a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. diff --git a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md b/cpp/ql/lib/change-notes/released/4.0.0.md similarity index 51% rename from cpp/ql/lib/change-notes/2024-01-20-elifdef.md rename to cpp/ql/lib/change-notes/released/4.0.0.md index 9766e7f3af27..0d388c288c7c 100644 --- a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md +++ b/cpp/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,11 @@ ---- -category: feature ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. * New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. * A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index f3d134d8910d..49fe3eef6973 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.2.0 +lastReleaseVersion: 4.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 816691638374..f9b07e13a995 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.2.1-dev +version: 4.0.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 671026afc561..1a4c8b061806 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. + ## 1.3.2 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md b/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md deleted file mode 100644 index e06ad16a71ed..000000000000 --- a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/change-notes/2025-01-31-format-args.md b/cpp/ql/src/change-notes/2025-01-31-format-args.md deleted file mode 100644 index 41f3d6bb202e..000000000000 --- a/cpp/ql/src/change-notes/2025-01-31-format-args.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. diff --git a/cpp/ql/src/change-notes/released/1.3.3.md b/cpp/ql/src/change-notes/released/1.3.3.md new file mode 100644 index 000000000000..1f85ee5df749 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.3.3.md @@ -0,0 +1,6 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 86a9cb32d86b..eb1f7dabc842 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.2 +lastReleaseVersion: 1.3.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 0db3a53d6bad..f47caeb6b71b 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.3-dev +version: 1.3.4-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 5e50f32db5f4..288181c929f1 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md new file mode 100644 index 000000000000..ec3c912e1601 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index a09015b688d3..80f613ab828e 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 1b748f263b9f..2a2b7f233978 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.33-dev +version: 1.7.34-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 5e50f32db5f4..288181c929f1 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md new file mode 100644 index 000000000000..ec3c912e1601 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index a09015b688d3..80f613ab828e 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index f674fcb03d75..fae71e157996 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.33-dev +version: 1.7.34-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index ccc682d0c4f8..211ce45f0cac 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +* C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. + ## 4.0.2 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md b/csharp/ql/lib/change-notes/2025-01-22-partial-members.md deleted file mode 100644 index d83e0365405e..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md b/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md deleted file mode 100644 index f71a457166d2..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. diff --git a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 4935e88a9871..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. -* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2025-01-29-params-models.md b/csharp/ql/lib/change-notes/2025-01-29-params-models.md deleted file mode 100644 index f94298875eba..000000000000 --- a/csharp/ql/lib/change-notes/2025-01-29-params-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). diff --git a/csharp/ql/lib/change-notes/released/5.0.0.md b/csharp/ql/lib/change-notes/released/5.0.0.md new file mode 100644 index 000000000000..964052090c34 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.0.0.md @@ -0,0 +1,12 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +* C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 765f0717719a..c9e54136ca5c 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.2 +lastReleaseVersion: 5.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index fbc091b79516..2f8a154c73f1 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.3-dev +version: 5.0.1-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 70e815289e83..90e6d1c825d8 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.16 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.0.15 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-12-17-experimental-queries.md b/csharp/ql/src/change-notes/released/1.0.16.md similarity index 82% rename from java/ql/src/change-notes/2024-12-17-experimental-queries.md rename to csharp/ql/src/change-notes/released/1.0.16.md index 12390d29b3c7..2f65ceae322e 100644 --- a/java/ql/src/change-notes/2024-12-17-experimental-queries.md +++ b/csharp/ql/src/change-notes/released/1.0.16.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.0.16 + +### Minor Analysis Improvements + * All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 52810c368bff..ac10cfe753a4 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 6fe780321556..6bc6aae0b4e3 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.16.md b/go/ql/consistency-queries/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 41f9b325313d..aec2e2037ad9 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 6dfe40aa040c..1e151003ad9c 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. +* By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. +* The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query + ## 3.0.2 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md b/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md deleted file mode 100644 index 3f2f7be82a5c..000000000000 --- a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query \ No newline at end of file diff --git a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md b/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md deleted file mode 100644 index a14d31e89b1b..000000000000 --- a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. diff --git a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 8a00e5083466..000000000000 --- a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` \ No newline at end of file diff --git a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md b/go/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from go/ql/lib/change-notes/2024-12-16-any-content-readers.md rename to go/ql/lib/change-notes/released/4.0.0.md index aa244c1b97af..5745445dcb2b 100644 --- a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md +++ b/go/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,12 @@ ---- -category: minorAnalysis ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. * By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. * The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index de0e567baf76..49fe3eef6973 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 5091fc8f3ce7..0ef261c505e5 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.3-dev +version: 4.0.1-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index f28caff537d3..809116d3d329 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.7 + +No user-facing changes. + ## 1.1.6 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.1.7.md b/go/ql/src/change-notes/released/1.1.7.md new file mode 100644 index 000000000000..81505c0507a2 --- /dev/null +++ b/go/ql/src/change-notes/released/1.1.7.md @@ -0,0 +1,3 @@ +## 1.1.7 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 9e712a00a21d..759105565166 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.6 +lastReleaseVersion: 1.1.7 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index cdd6d9a627f7..e4ddb827af22 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.7-dev +version: 1.1.8-dev groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index ac8d8d6651f3..5bc77cfcdf54 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,19 @@ +## 7.0.0 + +### Breaking Changes + +* Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. +* Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. +* Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. +* Deleted a lot of deprecated classes ending in "*Access", use the corresponding "*Call" classes instead. +* Deleted a lot of deprecated predicates ending in "*Access", use the corresponding "*Call" predicates instead. +* Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. +* Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. + +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. + ## 6.1.0 ### New Features diff --git a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md b/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md deleted file mode 100644 index cc0b2acb9534..000000000000 --- a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/java/ql/lib/change-notes/released/7.0.0.md similarity index 70% rename from java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to java/ql/lib/change-notes/released/7.0.0.md index 4a9ef73b8e27..08a4b0f85bff 100644 --- a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/java/ql/lib/change-notes/released/7.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 7.0.0 + +### Breaking Changes + * Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. * Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. * Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. @@ -9,3 +10,6 @@ category: breaking * Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. * Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 22247782f3e5..e0db21c78694 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.1.0 +lastReleaseVersion: 7.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index e3778844a7e7..7f5ba7b3c1d0 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.1.1-dev +version: 7.0.1-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 478735d6ed48..1630463509ed 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.1.12 ### Bug Fixes diff --git a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md b/java/ql/src/change-notes/released/1.1.13.md similarity index 75% rename from csharp/ql/src/change-notes/2024-11-05-experimental-queries.md rename to java/ql/src/change-notes/released/1.1.13.md index f13df286191a..017e4bdb0887 100644 --- a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md +++ b/java/ql/src/change-notes/released/1.1.13.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). \ No newline at end of file +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index f5b135d01938..09a80be68d17 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.12 +lastReleaseVersion: 1.1.13 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8ccf4d97d22e..38d900312179 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.13-dev +version: 1.1.14-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index f7773662f1e8..e79db6c81b33 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.4.0 + +### Major Analysis Improvements + +* Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter + ## 2.3.0 ### Deprecated APIs diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/released/2.4.0.md similarity index 78% rename from javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md rename to javascript/ql/lib/change-notes/released/2.4.0.md index a1ca70800b3b..d8e038356bb9 100644 --- a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md +++ b/javascript/ql/lib/change-notes/released/2.4.0.md @@ -1,4 +1,5 @@ ---- -category: majorAnalysis ---- +## 2.4.0 + +### Major Analysis Improvements + * Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 5936154675ae..cb0ea3a249a6 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.3.0 +lastReleaseVersion: 2.4.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index bb111078d1fd..781d1ee1b1e5 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.3.1-dev +version: 2.4.1-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 0a932a159509..2f8c0a183923 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,23 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. + ## 1.3.0 ### Major Analysis Improvements diff --git a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md b/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md deleted file mode 100644 index fb2dddb47a78..000000000000 --- a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: fix ---- -* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, - but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not - extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md b/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md deleted file mode 100644 index b8aa44faff54..000000000000 --- a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. \ No newline at end of file diff --git a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md b/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md deleted file mode 100644 index 9f25ba446a1b..000000000000 --- a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: majorAnalysis ---- -* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). - When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. - Some users may prefer this as a "defense in depth" option but note that it may result in false positives. - Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. diff --git a/javascript/ql/src/change-notes/2025-01-30-nest-di.md b/javascript/ql/src/change-notes/2025-01-30-nest-di.md deleted file mode 100644 index f6673613cf22..000000000000 --- a/javascript/ql/src/change-notes/2025-01-30-nest-di.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Improved support for NestJS applications that make use of dependency injection with custom providers. - Calls to methods on an injected service should now be resolved properly. diff --git a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md b/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md deleted file mode 100644 index 3f7c572d0742..000000000000 --- a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any - source files, but references other `tsconfig.json`-like files that do include source files. diff --git a/javascript/ql/src/change-notes/released/1.4.0.md b/javascript/ql/src/change-notes/released/1.4.0.md new file mode 100644 index 000000000000..bee08130cf0f --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.4.0.md @@ -0,0 +1,19 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index ec16350ed6fd..b8b2e97d5086 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.0 +lastReleaseVersion: 1.4.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 4e827b9b61f7..4996899a411a 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.3.1-dev +version: 1.4.1-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 46c730a2bdc4..0227fc12fbef 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.16.md b/misc/suite-helpers/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 5edeb9c2b06a..53321132e5b3 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.16-dev +version: 1.0.17-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 13a183b0bc20..a0b21e902656 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the old deprecated TypeTracking library. +* Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. +* Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2025-01-15-builtin-model.md b/python/ql/lib/change-notes/2025-01-15-builtin-model.md deleted file mode 100644 index c7933d09d044..000000000000 --- a/python/ql/lib/change-notes/2025-01-15-builtin-model.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/python/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to python/ql/lib/change-notes/released/4.0.0.md index dd7c5e70e863..5c267031f432 100644 --- a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/python/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,11 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the old deprecated TypeTracking library. * Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. * Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index c06beda86a3a..49fe3eef6973 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index dbb0c7e26965..6fa3880f8624 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.2-dev +version: 4.0.1-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 48612d804ae8..f336f27befe5 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.2 + +No user-facing changes. + ## 1.4.1 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.4.2.md b/python/ql/src/change-notes/released/1.4.2.md new file mode 100644 index 000000000000..37be01f40d98 --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.2.md @@ -0,0 +1,3 @@ +## 1.4.2 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 43ccf4467bed..a76cacdf7997 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.1 +lastReleaseVersion: 1.4.2 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index e629d13431bb..98dbf9bb34ca 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.2-dev +version: 1.4.3-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 917cc0290a7a..0acb1e8a240d 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,22 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. +* Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. +* Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. +* Deleted the deprecated `Label` module from `ApiGraphs.qll`. +* Deleted the deprecated `getAUse`, `getAnImmediateUse`, `getARhs`, and `getAValueReachingRhs` predicates from `API::Node`, use `getAValueReachableFromSource`, `asSource`, `asSink`, and `getAValueReachingSink` instead. +* Deleted the deprecated `getAVariable` predicate from the `ExprNode` class, use `getVariable` instead. +* Deleted the deprecated `getAPotentialFieldAccessMethod` predicate from the `ActiveRecordModelClass` class. +* Deleted the deprecated `ActiveRecordModelClassMethodCall` class from `ActiveRecord.qll`, use `ActiveRecordModelClass.getClassNode().trackModule().getMethod()` instead. +* Deleted the deprecated `PotentiallyUnsafeSqlExecutingMethodCall` class from `ActiveRecord.qll`, use the `SqlExecution` concept instead. +* Deleted the deprecated `ModelClass` and `ModelInstance` classes from `ActiveResource.qll`, use `ModelClassNode` and `ModelClassNode.getAnInstanceReference()` instead. +* Deleted the deprecated `Collection` class from `ActiveResource.qll`, use `CollectionSource` instead. +* Deleted the deprecated `ServiceInstantiation` and `ClientInstantiation` classes from `Twirp.qll`. +* Deleted a lot of deprecated dataflow modules from "*Query.qll" files. +* Deleted the old deprecated TypeTracking library. + ## 3.0.2 ### Minor Analysis Improvements diff --git a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/ruby/ql/lib/change-notes/released/4.0.0.md similarity index 98% rename from ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to ruby/ql/lib/change-notes/released/4.0.0.md index 8c4fef82d934..9674020e9ddc 100644 --- a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/ruby/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. * Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. * Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index de0e567baf76..49fe3eef6973 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 42ddf09077a1..9c3b066dccbc 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.3-dev +version: 4.0.1-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 3b12430e6f77..e22d95bc63f1 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.11 + +No user-facing changes. + ## 1.1.10 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.11.md b/ruby/ql/src/change-notes/released/1.1.11.md new file mode 100644 index 000000000000..c94f527264ea --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.11.md @@ -0,0 +1,3 @@ +## 1.1.11 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 4c01918d4144..121f8cf035d3 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.10 +lastReleaseVersion: 1.1.11 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 7fb679820589..5023e3174d6f 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.11-dev +version: 1.1.12-dev groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 7b4d4fc699c0..5712c750565f 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.1.md b/rust/ql/lib/change-notes/released/0.1.1.md new file mode 100644 index 000000000000..481c4392f3d7 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 2e08f40f6aa3..92d1505475f3 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 1efed98cdbe4..5bffcf30d3e8 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.1-dev +version: 0.1.2-dev groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 7b4d4fc699c0..5712c750565f 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.1.md b/rust/ql/src/change-notes/released/0.1.1.md new file mode 100644 index 000000000000..481c4392f3d7 --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 2e08f40f6aa3..92d1505475f3 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 6836b5375b3f..dd6662925243 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.1-dev +version: 0.1.2-dev groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index e876302b58bf..65f4b5407630 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,12 @@ +## 2.0.0 + +### Breaking Changes + +* Added a basic block construction as part of the library. This is currently + considered an internal unstable API. The input signature to the control flow + graph now requires two additional predicates: `idOfAstNode` and + `idOfCfgScope`. + ## 1.0.15 No user-facing changes. diff --git a/shared/controlflow/change-notes/2025-01-16-basic-block.md b/shared/controlflow/change-notes/released/2.0.0.md similarity index 88% rename from shared/controlflow/change-notes/2025-01-16-basic-block.md rename to shared/controlflow/change-notes/released/2.0.0.md index 2fd543dc551b..5a95065c8352 100644 --- a/shared/controlflow/change-notes/2025-01-16-basic-block.md +++ b/shared/controlflow/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Added a basic block construction as part of the library. This is currently considered an internal unstable API. The input signature to the control flow graph now requires two additional predicates: `idOfAstNode` and diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 8debd0d34c2b..0abe6ccede0f 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 2046b9b44e93..1b9230756303 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.16-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 8524b149db56..b1730ac585e1 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. + ## 1.1.9 No user-facing changes. diff --git a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md b/shared/dataflow/change-notes/released/2.0.0.md similarity index 76% rename from shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md rename to shared/dataflow/change-notes/released/2.0.0.md index 762527f1b737..c17f9a6fb4f5 100644 --- a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md +++ b/shared/dataflow/change-notes/released/2.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. -* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. \ No newline at end of file +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 6f4795f3ea0b..0abe6ccede0f 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 2.0.0 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 8280d364d1c2..eb41d1079e1e 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.10-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index b7416e72c048..c9bc4beddf13 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.16.md b/shared/mad/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 35b7147a8c0c..ebc658ad1915 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index d6049c6a9fcb..bc77ab8acc9a 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.16.md b/shared/rangeanalysis/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index e8f370ff0cc4..520211929639 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 33d1399a12da..ee6c1e706483 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.16.md b/shared/regex/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 4c5e2b17d928..30451f6dc3f4 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 30a55a5859cb..c1e8ee9e42f3 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.16.md b/shared/ssa/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 52a0153015a5..ebc832179b9b 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 6fe780321556..6bc6aae0b4e3 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.16.md b/shared/threat-models/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 24acb7b0cec0..b6ecead9dadc 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.16-dev +version: 1.0.17-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index ebfe21d85d17..0d1c113cc292 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.16.md b/shared/tutorial/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index a9829c5680c3..1d4748c4b358 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 9644aa49fd42..22eea9d7c8b5 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.16.md b/shared/typeflow/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 870d6dfb8b76..856cceea3121 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 71a6ce3acf29..5ac7f2636b68 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. + ## 1.0.15 No user-facing changes. diff --git a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md b/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index c04779d478fa..000000000000 --- a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `ConsistencyChecks` module. \ No newline at end of file diff --git a/shared/typetracking/change-notes/released/2.0.0.md b/shared/typetracking/change-notes/released/2.0.0.md new file mode 100644 index 000000000000..6aaf20b32d11 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.0.md @@ -0,0 +1,5 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 8debd0d34c2b..0abe6ccede0f 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 7eca76aff91f..805ed9bdaedf 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.16-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index e4d9b985300b..85078c7993ce 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.16.md b/shared/typos/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 57065f2d1ea1..8e2b68b63927 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 38800b2bcb71..f6eb77814864 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.3 + +No user-facing changes. + ## 2.0.2 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.3.md b/shared/util/change-notes/released/2.0.3.md new file mode 100644 index 000000000000..7bd669821d5f --- /dev/null +++ b/shared/util/change-notes/released/2.0.3.md @@ -0,0 +1,3 @@ +## 2.0.3 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 81c7f1dbc13c..fabf1e865966 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.2 +lastReleaseVersion: 2.0.3 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 9c9b4113c593..e2ddbb7374db 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.3-dev +version: 2.0.4-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 740618e89773..d6297fd0036c 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.16.md b/shared/xml/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 5dc9bb675803..552e89e1a6f0 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 5f6250607e09..2aff18b9a3c9 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.16.md b/shared/yaml/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index e9449e311698..5701451a376d 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 9c569ad4bed3..d9a18cfabbf6 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/swift/ql/lib/change-notes/released/4.0.0.md similarity index 88% rename from swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/4.0.0.md index d9fb3caedf90..b19d5987c0c6 100644 --- a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. -* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. \ No newline at end of file +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index c06beda86a3a..49fe3eef6973 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 4281e1219f2a..50c6a60e39e4 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.2-dev +version: 4.0.1-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index ad51d96751ed..729baa54c4ad 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.16.md b/swift/ql/src/change-notes/released/1.0.16.md new file mode 100644 index 000000000000..6165cfef9f25 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 8debd0d34c2b..25c58f4113f0 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index b3331ff4ff06..58a558cd2b9a 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - swift - queries