github
diff --git a/‎.github/copilot-instructions.md‎
Lines changed: 0 additions & 4 deletions b/‎.github/copilot-instructions.md‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎.github/instructions/expected-files.instructions.md‎
Lines changed: 4 additions & 0 deletions b/‎.github/instructions/expected-files.instructions.md‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎.github/instructions/ql-files.instructions.md‎
Lines changed: 6 additions & 0 deletions b/‎.github/instructions/ql-files.instructions.md‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎CODEOWNERS‎
Lines changed: 6 additions & 3 deletions b/‎CODEOWNERS‎
Lines changed: 6 additions & 3 deletions
diff --git a/‎Cargo.toml‎
Lines changed: 0 additions & 1 deletion b/‎Cargo.toml‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎MODULE.bazel‎
Lines changed: 3 additions & 3 deletions b/‎MODULE.bazel‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎actions/ql/lib/CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions b/‎actions/ql/lib/CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎actions/ql/lib/change-notes/released/0.4.19.md‎
Lines changed: 3 additions & 0 deletions b/‎actions/ql/lib/change-notes/released/0.4.19.md‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎actions/ql/lib/codeql-pack.release.yml‎
Lines changed: 1 addition & 1 deletion b/‎actions/ql/lib/codeql-pack.release.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎actions/ql/lib/codeql/actions/security/ArgumentInjectionQuery.qll‎
Lines changed: 0 additions & 2 deletions b/‎actions/ql/lib/codeql/actions/security/ArgumentInjectionQuery.qll‎
Lines changed: 0 additions & 2 deletions
@@ -0,0 +1,4 @@
+---
+applyTo: "**/*.expected"
+---
+Ignore these files. These are generated to be correct by running the tests, and should not be edited manually.
@@ -0,0 +1,6 @@
+---
+applyTo: "**/*.ql,**/*.qll"
+---
+When reviewing these QL files, do not make any comment on the code itself. You don't understand the QL programming language well enough yet. You can only make comments about the following aspects:
+* comments (lines starting with `//` or block comments enclosed in `/* ... */`): you can suggest improvements to the clarity of comments, or point out spelling mistakes
+* typos in identifiers
@@ -1,3 +1,7 @@
+# Catch-all for anything which isn't matched by a line lower down
+* @github/code-scanning-alert-coverage
+
+# CodeQL language libraries
 /actions/ @github/codeql-dynamic
 /cpp/ @github/codeql-c-analysis
 /csharp/ @github/codeql-csharp
@@ -7,8 +11,10 @@
 /java/ @github/codeql-java
 /javascript/ @github/codeql-javascript
 /python/ @github/codeql-python
+/ql/ @github/codeql-ql-for-ql-reviewers
 /ruby/ @github/codeql-ruby
 /rust/ @github/codeql-rust
+/shared/ @github/codeql-shared-libraries-reviewers
 /swift/ @github/codeql-swift
 /misc/codegen/ @github/codeql-swift
 /java/kotlin-extractor/ @github/codeql-kotlin
@@ -25,9 +31,6 @@
 /docs/codeql/ql-language-reference/ @github/codeql-frontend-reviewers
 /docs/query-*-style-guide.md @github/codeql-analysis-reviewers
 
-# QL for QL reviewers
-/ql/ @github/codeql-ql-for-ql-reviewers
-
 # Bazel (excluding BUILD.bazel files)
 MODULE.bazel @github/codeql-ci-reviewers
 .bazelversion @github/codeql-ci-reviewers
 
@@ -10,4 +10,3 @@ members = [
     "rust/ast-generator",
     "rust/autobuild",
 ]
-exclude = ["mad-generation-build"]
@@ -19,16 +19,16 @@ bazel_dep(name = "rules_go", version = "0.56.1")
 bazel_dep(name = "rules_pkg", version = "1.0.1")
 bazel_dep(name = "rules_nodejs", version = "6.2.0-codeql.1")
 bazel_dep(name = "rules_python", version = "0.40.0")
-bazel_dep(name = "rules_shell", version = "0.3.0")
-bazel_dep(name = "bazel_skylib", version = "1.7.1")
+bazel_dep(name = "rules_shell", version = "0.5.0")
+bazel_dep(name = "bazel_skylib", version = "1.8.1")
 bazel_dep(name = "abseil-cpp", version = "20240116.1", repo_name = "absl")
 bazel_dep(name = "nlohmann_json", version = "3.11.3", repo_name = "json")
 bazel_dep(name = "fmt", version = "10.0.0")
 bazel_dep(name = "rules_kotlin", version = "2.1.3-codeql.1")
 bazel_dep(name = "gazelle", version = "0.40.0")
 bazel_dep(name = "rules_dotnet", version = "0.19.2-codeql.1")
 bazel_dep(name = "googletest", version = "1.14.0.bcr.1")
-bazel_dep(name = "rules_rust", version = "0.63.0")
+bazel_dep(name = "rules_rust", version = "0.66.0")
 bazel_dep(name = "zstd", version = "1.5.5.bcr.1")
 
 bazel_dep(name = "buildifier_prebuilt", version = "6.4.0", dev_dependency = True)
 
@@ -1,3 +1,7 @@
+## 0.4.19
+
+No user-facing changes.
+
 ## 0.4.18
 
 No user-facing changes.
 
@@ -0,0 +1,3 @@
+## 0.4.19
+
+No user-facing changes.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.18
+lastReleaseVersion: 0.4.19
@@ -100,8 +100,6 @@ private module ArgumentInjectionConfig implements DataFlow::ConfigSig {
 
   predicate observeDiffInformedIncrementalMode() { any() }
 
-  Location getASelectedSourceLocation(DataFlow::Node source) { none() }
-
   Location getASelectedSinkLocation(DataFlow::Node sink) {
     result = sink.getLocation()
     or
-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +---
 +applyTo: "**/*.expected"
 +---
 +Ignore these files. These are generated to be correct by running the tests, and should not be edited manually.
Original file line number	Diff line number	Diff line change
`@@ -10,4 +10,3 @@ members = [`
`10`	`10`	`"rust/ast-generator",`
`11`	`11`	`"rust/autobuild",`
`12`	`12`	`]`
`13`		`-exclude = ["mad-generation-build"]`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+## 0.4.19`
	`2`	`+`
	`3`	`+No user-facing changes.`
Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`	`1`	`---`
`2`		`-lastReleaseVersion: 0.4.18`
	`2`	`+lastReleaseVersion: 0.4.19`