From 22e030584c56dd9a7ad6e42f518463cb20d903cd Mon Sep 17 00:00:00 2001 From: Dave Bartolomeo Date: Tue, 7 Jan 2025 12:14:27 -0500 Subject: [PATCH] Revert "Release preparation for version 2.20.1" --- actions/ql/lib/CHANGELOG.md | 5 ----- .../2024-12-19-initial-release.md} | 7 +++---- actions/ql/lib/change-notes/released/0.4.0.md | 5 ----- actions/ql/lib/codeql-pack.release.yml | 2 -- actions/ql/lib/qlpack.yml | 2 +- .../2024-12-19-initial-release.md} | 7 +++---- actions/ql/src/codeql-pack.release.yml | 2 -- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 19 ----------------- .../2024-12-04-guard-conditions.md | 4 ++++ .../2024-12-17-template-parameter-base.md | 4 ++++ .../2024-12-17-template-parameter.md | 4 ++++ .../2024-12-18-non-type-template-parameter.md | 4 ++++ .../change-notes/2024-12-20-sizeof-pack.md | 4 ++++ ...4-12-20-template-template-instantiation.md | 6 ++++++ cpp/ql/lib/change-notes/released/3.1.0.md | 18 ---------------- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 10 --------- .../2024-11-27-active-template-library.md | 4 ++++ .../2024-12-05-badly-bounded-write.md | 4 ++++ ...024-12-05-wrong-number-format-arguments.md | 4 ++++ .../2024-12-05-wrong-type-format-args.md | 4 ++++ ...024-12-18-return-stack-allocated-memory.md | 4 ++++ cpp/ql/src/change-notes/released/1.3.1.md | 9 -------- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ---- .../lib/change-notes/released/1.7.31.md | 3 --- .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ---- .../src/change-notes/released/1.7.31.md | 3 --- .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 13 ------------ .../2024-12-04-dataflow-type-pruning-tweak.md | 4 ++++ .../ql/lib/change-notes/2024-12-04-dotnet9.md | 4 ++++ .../2024-12-05-aspnetcore-mvc-model.md | 4 ++++ ...add-markupstring-as-html-injection-sink.md | 4 ++++ .../2024-12-18-blazor-attribute-sources.md | 6 ++++++ .../2024-12-20-collection-params.md | 4 ++++ csharp/ql/lib/change-notes/released/4.0.1.md | 12 ----------- csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 6 ------ ...1.0.14.md => 2024-12-17-move-libraries.md} | 7 +++---- csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 8 ------- ...-improve-flow-out-of-variadic-parameter.md | 4 ++++ .../2024-12-12-variadic-parameter-sources.md | 4 ++++ .../change-notes/2024-12-13-os-args-model.md | 5 +++++ go/ql/lib/change-notes/released/3.0.1.md | 7 ------- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 4 ---- go/ql/src/change-notes/released/1.1.5.md | 3 --- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 21 ------------------- ...ontrol-flow-graph-lightweight-IR-layer.md} | 13 +++--------- ...sttemplate-getforobject-third-parameter.md | 4 ++++ .../2024-12-04-dataflow-type-pruning-tweak.md | 4 ++++ .../change-notes/2024-12-06-file-getname.md | 4 ++++ java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 4 ---- java/ql/src/change-notes/released/1.1.11.md | 3 --- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 4 ---- .../ql/lib/change-notes/released/2.2.1.md | 3 --- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 4 ---- .../ql/src/change-notes/released/1.2.6.md | 3 --- javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 11 ---------- ...parameter-annotation-api-graph-support.md} | 11 +++------- .../2024-12-18-fastapi-request-modeling.md | 5 +++++ python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 6 ------ ....0.md => 2024-11-21-template-injection.md} | 9 ++++---- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 4 ---- ruby/ql/lib/change-notes/released/3.0.1.md | 3 --- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 ---- ruby/ql/src/change-notes/released/1.1.9.md | 3 --- ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 6 ------ ...d => 2023-10-02-deduplicate-path-graph.md} | 7 +++---- shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ---- shared/mad/change-notes/released/1.0.14.md | 3 --- shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ---- shared/regex/change-notes/released/1.0.14.md | 3 --- shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ---- shared/ssa/change-notes/released/1.0.14.md | 3 --- shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ---- .../tutorial/change-notes/released/1.0.14.md | 3 --- shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ---- .../typeflow/change-notes/released/1.0.14.md | 3 --- shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ---- .../change-notes/released/1.0.14.md | 3 --- shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ---- shared/typos/change-notes/released/1.0.14.md | 3 --- shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ---- shared/util/change-notes/released/2.0.1.md | 3 --- shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ---- shared/xml/change-notes/released/1.0.14.md | 3 --- shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ---- shared/yaml/change-notes/released/1.0.14.md | 3 --- shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 ------ .../3.1.0.md => 2024-12-09-swift-6.md} | 7 +++---- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 ---- swift/ql/src/change-notes/released/1.0.14.md | 3 --- swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 168 files changed, 197 insertions(+), 447 deletions(-) delete mode 100644 actions/ql/lib/CHANGELOG.md rename actions/ql/{src/change-notes/released/0.4.0.md => lib/change-notes/2024-12-19-initial-release.md} (55%) delete mode 100644 actions/ql/lib/change-notes/released/0.4.0.md delete mode 100644 actions/ql/lib/codeql-pack.release.yml rename actions/ql/src/{CHANGELOG.md => change-notes/2024-12-19-initial-release.md} (55%) delete mode 100644 actions/ql/src/codeql-pack.release.yml create mode 100644 cpp/ql/lib/change-notes/2024-12-04-guard-conditions.md create mode 100644 cpp/ql/lib/change-notes/2024-12-17-template-parameter-base.md create mode 100644 cpp/ql/lib/change-notes/2024-12-17-template-parameter.md create mode 100644 cpp/ql/lib/change-notes/2024-12-18-non-type-template-parameter.md create mode 100644 cpp/ql/lib/change-notes/2024-12-20-sizeof-pack.md create mode 100644 cpp/ql/lib/change-notes/2024-12-20-template-template-instantiation.md delete mode 100644 cpp/ql/lib/change-notes/released/3.1.0.md create mode 100644 cpp/ql/src/change-notes/2024-11-27-active-template-library.md create mode 100644 cpp/ql/src/change-notes/2024-12-05-badly-bounded-write.md create mode 100644 cpp/ql/src/change-notes/2024-12-05-wrong-number-format-arguments.md create mode 100644 cpp/ql/src/change-notes/2024-12-05-wrong-type-format-args.md create mode 100644 cpp/ql/src/change-notes/2024-12-18-return-stack-allocated-memory.md delete mode 100644 cpp/ql/src/change-notes/released/1.3.1.md delete mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.31.md delete mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.31.md create mode 100644 csharp/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md create mode 100644 csharp/ql/lib/change-notes/2024-12-04-dotnet9.md create mode 100644 csharp/ql/lib/change-notes/2024-12-05-aspnetcore-mvc-model.md create mode 100644 csharp/ql/lib/change-notes/2024-12-12-add-markupstring-as-html-injection-sink.md create mode 100644 csharp/ql/lib/change-notes/2024-12-18-blazor-attribute-sources.md create mode 100644 csharp/ql/lib/change-notes/2024-12-20-collection-params.md delete mode 100644 csharp/ql/lib/change-notes/released/4.0.1.md rename csharp/ql/src/change-notes/{released/1.0.14.md => 2024-12-17-move-libraries.md} (65%) delete mode 100644 go/ql/consistency-queries/change-notes/released/1.0.14.md create mode 100644 go/ql/lib/change-notes/2024-12-06-improve-flow-out-of-variadic-parameter.md create mode 100644 go/ql/lib/change-notes/2024-12-12-variadic-parameter-sources.md create mode 100644 go/ql/lib/change-notes/2024-12-13-os-args-model.md delete mode 100644 go/ql/lib/change-notes/released/3.0.1.md delete mode 100644 go/ql/src/change-notes/released/1.1.5.md rename java/ql/lib/change-notes/{released/6.0.0.md => 2024-11-14-control-flow-graph-lightweight-IR-layer.md} (50%) create mode 100644 java/ql/lib/change-notes/2024-11-28-model-resttemplate-getforobject-third-parameter.md create mode 100644 java/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md create mode 100644 java/ql/lib/change-notes/2024-12-06-file-getname.md delete mode 100644 java/ql/src/change-notes/released/1.1.11.md delete mode 100644 javascript/ql/lib/change-notes/released/2.2.1.md delete mode 100644 javascript/ql/src/change-notes/released/1.2.6.md delete mode 100644 misc/suite-helpers/change-notes/released/1.0.14.md rename python/ql/lib/change-notes/{released/3.1.0.md => 2024-11-26-parameter-annotation-api-graph-support.md} (58%) create mode 100644 python/ql/lib/change-notes/2024-12-18-fastapi-request-modeling.md rename python/ql/src/change-notes/{released/1.4.0.md => 2024-11-21-template-injection.md} (78%) delete mode 100644 ruby/ql/lib/change-notes/released/3.0.1.md delete mode 100644 ruby/ql/src/change-notes/released/1.1.9.md delete mode 100644 shared/controlflow/change-notes/released/1.0.14.md rename shared/dataflow/change-notes/{released/1.1.8.md => 2023-10-02-deduplicate-path-graph.md} (77%) delete mode 100644 shared/mad/change-notes/released/1.0.14.md delete mode 100644 shared/rangeanalysis/change-notes/released/1.0.14.md delete mode 100644 shared/regex/change-notes/released/1.0.14.md delete mode 100644 shared/ssa/change-notes/released/1.0.14.md delete mode 100644 shared/threat-models/change-notes/released/1.0.14.md delete mode 100644 shared/tutorial/change-notes/released/1.0.14.md delete mode 100644 shared/typeflow/change-notes/released/1.0.14.md delete mode 100644 shared/typetracking/change-notes/released/1.0.14.md delete mode 100644 shared/typos/change-notes/released/1.0.14.md delete mode 100644 shared/util/change-notes/released/2.0.1.md delete mode 100644 shared/xml/change-notes/released/1.0.14.md delete mode 100644 shared/yaml/change-notes/released/1.0.14.md rename swift/ql/lib/change-notes/{released/3.1.0.md => 2024-12-09-swift-6.md} (51%) delete mode 100644 swift/ql/src/change-notes/released/1.0.14.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md deleted file mode 100644 index 7ad10899ce1c..000000000000 --- a/actions/ql/lib/CHANGELOG.md +++ /dev/null @@ -1,5 +0,0 @@ -## 0.4.0 - -### New Features - -* Initial public preview release diff --git a/actions/ql/src/change-notes/released/0.4.0.md b/actions/ql/lib/change-notes/2024-12-19-initial-release.md similarity index 55% rename from actions/ql/src/change-notes/released/0.4.0.md rename to actions/ql/lib/change-notes/2024-12-19-initial-release.md index caa8feca5585..09263f5089d2 100644 --- a/actions/ql/src/change-notes/released/0.4.0.md +++ b/actions/ql/lib/change-notes/2024-12-19-initial-release.md @@ -1,5 +1,4 @@ -## 0.4.0 - -### New Queries - +--- +category: feature +--- * Initial public preview release diff --git a/actions/ql/lib/change-notes/released/0.4.0.md b/actions/ql/lib/change-notes/released/0.4.0.md deleted file mode 100644 index 7ad10899ce1c..000000000000 --- a/actions/ql/lib/change-notes/released/0.4.0.md +++ /dev/null @@ -1,5 +0,0 @@ -## 0.4.0 - -### New Features - -* Initial public preview release diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml deleted file mode 100644 index 458bfbeccffd..000000000000 --- a/actions/ql/lib/codeql-pack.release.yml +++ /dev/null @@ -1,2 +0,0 @@ ---- -lastReleaseVersion: 0.4.0 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 2f6aa9807288..83cdaabc80dd 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.0 +version: 0.4.0-dev library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/change-notes/2024-12-19-initial-release.md similarity index 55% rename from actions/ql/src/CHANGELOG.md rename to actions/ql/src/change-notes/2024-12-19-initial-release.md index caa8feca5585..e02078ea2731 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/change-notes/2024-12-19-initial-release.md @@ -1,5 +1,4 @@ -## 0.4.0 - -### New Queries - +--- +category: newQuery +--- * Initial public preview release diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml deleted file mode 100644 index 458bfbeccffd..000000000000 --- a/actions/ql/src/codeql-pack.release.yml +++ /dev/null @@ -1,2 +0,0 @@ ---- -lastReleaseVersion: 0.4.0 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 7ea8f9d77dde..f822a516e569 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.0 +version: 0.4.0-dev library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 919bd905e73b..19784b530e7a 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,22 +1,3 @@ -## 3.1.0 - -### Deprecated APIs - -* The `TemplateParameter` class, representing C++ type template parameters has been deprecated. Use `TypeTemplateParameter` instead. - -### New Features - -* New classes `SizeofPackExprOperator` and `SizeofPackTypeOperator` were introduced, which represent the C++ `sizeof...` operator taking expressions and type arguments, respectively. -* A new class `TemplateTemplateParameterInstantiation` was introduced, which represents instantiations of template template parameters. -* A new predicate `getAnInstantiation` was added to the `TemplateTemplateParameter` class, which yields instantiations of template template parameters. -* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of template template parameters. -* A new class `NonTypeTemplateParameter` was introduced, which represents C++ non-type template parameters. -* A new class `TemplateParameterBase` was introduced, which represents C++ non-type template parameters, type template parameters, and template template parameters. - -### Minor Analysis Improvements - -* The `Guards` library (`semmle.code.cpp.controlflow.Guards`) has been improved to recognize more guard conditions. - ## 3.0.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/2024-12-04-guard-conditions.md b/cpp/ql/lib/change-notes/2024-12-04-guard-conditions.md new file mode 100644 index 000000000000..f60a6a2970a6 --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-04-guard-conditions.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The `Guards` library (`semmle.code.cpp.controlflow.Guards`) has been improved to recognize more guard conditions. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2024-12-17-template-parameter-base.md b/cpp/ql/lib/change-notes/2024-12-17-template-parameter-base.md new file mode 100644 index 000000000000..6fec6d5f4f55 --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-17-template-parameter-base.md @@ -0,0 +1,4 @@ +--- +category: feature +--- +* A new class `TemplateParameterBase` was introduced, which represents C++ non-type template parameters, type template parameters, and template template parameters. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2024-12-17-template-parameter.md b/cpp/ql/lib/change-notes/2024-12-17-template-parameter.md new file mode 100644 index 000000000000..0ac7085b371b --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-17-template-parameter.md @@ -0,0 +1,4 @@ +--- +category: deprecated +--- +* The `TemplateParameter` class, representing C++ type template parameters has been deprecated. Use `TypeTemplateParameter` instead. diff --git a/cpp/ql/lib/change-notes/2024-12-18-non-type-template-parameter.md b/cpp/ql/lib/change-notes/2024-12-18-non-type-template-parameter.md new file mode 100644 index 000000000000..41fe400ed66a --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-18-non-type-template-parameter.md @@ -0,0 +1,4 @@ +--- +category: feature +--- +* A new class `NonTypeTemplateParameter` was introduced, which represents C++ non-type template parameters. diff --git a/cpp/ql/lib/change-notes/2024-12-20-sizeof-pack.md b/cpp/ql/lib/change-notes/2024-12-20-sizeof-pack.md new file mode 100644 index 000000000000..bd912e4fb2e2 --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-20-sizeof-pack.md @@ -0,0 +1,4 @@ +--- +category: feature +--- +* New classes `SizeofPackExprOperator` and `SizeofPackTypeOperator` were introduced, which represent the C++ `sizeof...` operator taking expressions and type arguments, respectively. diff --git a/cpp/ql/lib/change-notes/2024-12-20-template-template-instantiation.md b/cpp/ql/lib/change-notes/2024-12-20-template-template-instantiation.md new file mode 100644 index 000000000000..6e3ecd3468c1 --- /dev/null +++ b/cpp/ql/lib/change-notes/2024-12-20-template-template-instantiation.md @@ -0,0 +1,6 @@ +--- +category: feature +--- +* A new class `TemplateTemplateParameterInstantiation` was introduced, which represents instantiations of template template parameters. +* A new predicate `getAnInstantiation` was added to the `TemplateTemplateParameter` class, which yields instantiations of template template parameters. +* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of template template parameters. diff --git a/cpp/ql/lib/change-notes/released/3.1.0.md b/cpp/ql/lib/change-notes/released/3.1.0.md deleted file mode 100644 index 3c7f181f60a4..000000000000 --- a/cpp/ql/lib/change-notes/released/3.1.0.md +++ /dev/null @@ -1,18 +0,0 @@ -## 3.1.0 - -### Deprecated APIs - -* The `TemplateParameter` class, representing C++ type template parameters has been deprecated. Use `TypeTemplateParameter` instead. - -### New Features - -* New classes `SizeofPackExprOperator` and `SizeofPackTypeOperator` were introduced, which represent the C++ `sizeof...` operator taking expressions and type arguments, respectively. -* A new class `TemplateTemplateParameterInstantiation` was introduced, which represents instantiations of template template parameters. -* A new predicate `getAnInstantiation` was added to the `TemplateTemplateParameter` class, which yields instantiations of template template parameters. -* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of template template parameters. -* A new class `NonTypeTemplateParameter` was introduced, which represents C++ non-type template parameters. -* A new class `TemplateParameterBase` was introduced, which represents C++ non-type template parameters, type template parameters, and template template parameters. - -### Minor Analysis Improvements - -* The `Guards` library (`semmle.code.cpp.controlflow.Guards`) has been improved to recognize more guard conditions. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 82f62960aa3b..33d3a2cd1139 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 2d83b8d4840c..4bb4b04e02fd 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.1.0 +version: 3.0.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 7d957e42696c..db16fe6f8b35 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,13 +1,3 @@ -## 1.3.1 - -### Minor Analysis Improvements - -* The "Returning stack-allocated memory" query (`cpp/return-stack-allocated-memory`) no longer produces results if there is an extraction error in the returned expression. -* The "Badly bounded write" query (`cpp/badly-bounded-write`) no longer produces results if there is an extraction error in the type of the output buffer. -* The "Too few arguments to formatting function" query (`cpp/wrong-number-format-arguments`) no longer produces results if an argument has an extraction error. -* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) no longer produces results when an argument type has an extraction error. -* Added dataflow models and flow sources for Microsoft's Active Template Library (ATL). - ## 1.3.0 ### New Queries diff --git a/cpp/ql/src/change-notes/2024-11-27-active-template-library.md b/cpp/ql/src/change-notes/2024-11-27-active-template-library.md new file mode 100644 index 000000000000..a677ac661077 --- /dev/null +++ b/cpp/ql/src/change-notes/2024-11-27-active-template-library.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added dataflow models and flow sources for Microsoft's Active Template Library (ATL). \ No newline at end of file diff --git a/cpp/ql/src/change-notes/2024-12-05-badly-bounded-write.md b/cpp/ql/src/change-notes/2024-12-05-badly-bounded-write.md new file mode 100644 index 000000000000..c7ddd104ad0e --- /dev/null +++ b/cpp/ql/src/change-notes/2024-12-05-badly-bounded-write.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Badly bounded write" query (`cpp/badly-bounded-write`) no longer produces results if there is an extraction error in the type of the output buffer. diff --git a/cpp/ql/src/change-notes/2024-12-05-wrong-number-format-arguments.md b/cpp/ql/src/change-notes/2024-12-05-wrong-number-format-arguments.md new file mode 100644 index 000000000000..6b41378f5569 --- /dev/null +++ b/cpp/ql/src/change-notes/2024-12-05-wrong-number-format-arguments.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Too few arguments to formatting function" query (`cpp/wrong-number-format-arguments`) no longer produces results if an argument has an extraction error. diff --git a/cpp/ql/src/change-notes/2024-12-05-wrong-type-format-args.md b/cpp/ql/src/change-notes/2024-12-05-wrong-type-format-args.md new file mode 100644 index 000000000000..1bf77d55a618 --- /dev/null +++ b/cpp/ql/src/change-notes/2024-12-05-wrong-type-format-args.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) no longer produces results when an argument type has an extraction error. diff --git a/cpp/ql/src/change-notes/2024-12-18-return-stack-allocated-memory.md b/cpp/ql/src/change-notes/2024-12-18-return-stack-allocated-memory.md new file mode 100644 index 000000000000..76f5b9d7eaed --- /dev/null +++ b/cpp/ql/src/change-notes/2024-12-18-return-stack-allocated-memory.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The "Returning stack-allocated memory" query (`cpp/return-stack-allocated-memory`) no longer produces results if there is an extraction error in the returned expression. diff --git a/cpp/ql/src/change-notes/released/1.3.1.md b/cpp/ql/src/change-notes/released/1.3.1.md deleted file mode 100644 index bb3b2bf16c73..000000000000 --- a/cpp/ql/src/change-notes/released/1.3.1.md +++ /dev/null @@ -1,9 +0,0 @@ -## 1.3.1 - -### Minor Analysis Improvements - -* The "Returning stack-allocated memory" query (`cpp/return-stack-allocated-memory`) no longer produces results if there is an extraction error in the returned expression. -* The "Badly bounded write" query (`cpp/badly-bounded-write`) no longer produces results if there is an extraction error in the type of the output buffer. -* The "Too few arguments to formatting function" query (`cpp/wrong-number-format-arguments`) no longer produces results if an argument has an extraction error. -* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) no longer produces results when an argument type has an extraction error. -* Added dataflow models and flow sources for Microsoft's Active Template Library (ATL). diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index e71b6d081f15..ec16350ed6fd 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.1 +lastReleaseVersion: 1.3.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index b37fc604fc63..940c3e2a4cba 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.1 +version: 1.3.1-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 0a74ff6d7d08..a71f93aacd46 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.7.31 - -No user-facing changes. - ## 1.7.30 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.31.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.31.md deleted file mode 100644 index 17df0436207f..000000000000 --- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.31.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.7.31 - -No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 908f8a00a39b..c0346e526b94 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.30 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index d52744447534..781915bf1a15 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.31 +version: 1.7.31-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 0a74ff6d7d08..a71f93aacd46 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.7.31 - -No user-facing changes. - ## 1.7.30 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.31.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.31.md deleted file mode 100644 index 17df0436207f..000000000000 --- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.31.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.7.31 - -No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 908f8a00a39b..c0346e526b94 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.30 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 41d5662ed57f..979d8e6c6615 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.31 +version: 1.7.31-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 857acdec93a9..86f279365f09 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,16 +1,3 @@ -## 4.0.1 - -### Minor Analysis Improvements - -* C# 13: Added QL library support for *collection* like type `params` parameters. -* Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`: - - `[SupplyParameterFromForm]` - - `[SupplyParameterFromQuery]` -* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. -* Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method. -* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. -* The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features. - ## 4.0.0 ### Breaking Changes diff --git a/csharp/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md b/csharp/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md new file mode 100644 index 000000000000..258c0e5326bc --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. diff --git a/csharp/ql/lib/change-notes/2024-12-04-dotnet9.md b/csharp/ql/lib/change-notes/2024-12-04-dotnet9.md new file mode 100644 index 000000000000..e166040e1551 --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-04-dotnet9.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features. diff --git a/csharp/ql/lib/change-notes/2024-12-05-aspnetcore-mvc-model.md b/csharp/ql/lib/change-notes/2024-12-05-aspnetcore-mvc-model.md new file mode 100644 index 000000000000..04afe96522b0 --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-05-aspnetcore-mvc-model.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2024-12-12-add-markupstring-as-html-injection-sink.md b/csharp/ql/lib/change-notes/2024-12-12-add-markupstring-as-html-injection-sink.md new file mode 100644 index 000000000000..032edbb1f102 --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-12-add-markupstring-as-html-injection-sink.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. diff --git a/csharp/ql/lib/change-notes/2024-12-18-blazor-attribute-sources.md b/csharp/ql/lib/change-notes/2024-12-18-blazor-attribute-sources.md new file mode 100644 index 000000000000..5a48753b259f --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-18-blazor-attribute-sources.md @@ -0,0 +1,6 @@ +--- +category: minorAnalysis +--- +* Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`: + - `[SupplyParameterFromForm]` + - `[SupplyParameterFromQuery]` diff --git a/csharp/ql/lib/change-notes/2024-12-20-collection-params.md b/csharp/ql/lib/change-notes/2024-12-20-collection-params.md new file mode 100644 index 000000000000..bb5ea26c6d45 --- /dev/null +++ b/csharp/ql/lib/change-notes/2024-12-20-collection-params.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* C# 13: Added QL library support for *collection* like type `params` parameters. diff --git a/csharp/ql/lib/change-notes/released/4.0.1.md b/csharp/ql/lib/change-notes/released/4.0.1.md deleted file mode 100644 index 703439b4cfed..000000000000 --- a/csharp/ql/lib/change-notes/released/4.0.1.md +++ /dev/null @@ -1,12 +0,0 @@ -## 4.0.1 - -### Minor Analysis Improvements - -* C# 13: Added QL library support for *collection* like type `params` parameters. -* Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`: - - `[SupplyParameterFromForm]` - - `[SupplyParameterFromQuery]` -* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. -* Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method. -* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. -* The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index c0db4dcc0b33..49fe3eef6973 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.1 +lastReleaseVersion: 4.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index bb79e33a5284..81a55470a4dd 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.1 +version: 4.0.1-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 1adfe6e1822c..370a9cf4a6a2 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.0.14 - -### Minor Analysis Improvements - -* The `ExternalApi` and `TestLibrary` modules have been moved to the library pack. - ## 1.0.13 ### Minor Analysis Improvements diff --git a/csharp/ql/src/change-notes/released/1.0.14.md b/csharp/ql/src/change-notes/2024-12-17-move-libraries.md similarity index 65% rename from csharp/ql/src/change-notes/released/1.0.14.md rename to csharp/ql/src/change-notes/2024-12-17-move-libraries.md index d49594169df1..07bf61b7e355 100644 --- a/csharp/ql/src/change-notes/released/1.0.14.md +++ b/csharp/ql/src/change-notes/2024-12-17-move-libraries.md @@ -1,5 +1,4 @@ -## 1.0.14 - -### Minor Analysis Improvements - +--- +category: minorAnalysis +--- * The `ExternalApi` and `TestLibrary` modules have been moved to the library pack. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 5334c6902705..e4d9400d96d3 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.14 +version: 1.0.14-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 2d5ba191d2eb..3c6fa155a322 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.14.md b/go/ql/consistency-queries/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/go/ql/consistency-queries/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 5e500c12eb77..1812705438ca 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.14 +version: 1.0.14-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 9c0c41ec4cb9..83052b3a1d9b 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,11 +1,3 @@ -## 3.0.1 - -### Minor Analysis Improvements - -* Added a `commandargs` local source model for the `os.Args` variable. -* Source models defined using models-as-data now work for variadic parameters. -* Data flow out of variadic parameters now works in more situations. Summary models defined using models-as-data work. Source models defined using models-as-data do not work yet. - ## 3.0.0 ### Breaking Changes diff --git a/go/ql/lib/change-notes/2024-12-06-improve-flow-out-of-variadic-parameter.md b/go/ql/lib/change-notes/2024-12-06-improve-flow-out-of-variadic-parameter.md new file mode 100644 index 000000000000..8244ba069943 --- /dev/null +++ b/go/ql/lib/change-notes/2024-12-06-improve-flow-out-of-variadic-parameter.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Data flow out of variadic parameters now works in more situations. Summary models defined using models-as-data work. Source models defined using models-as-data do not work yet. diff --git a/go/ql/lib/change-notes/2024-12-12-variadic-parameter-sources.md b/go/ql/lib/change-notes/2024-12-12-variadic-parameter-sources.md new file mode 100644 index 000000000000..38d5ad2783f1 --- /dev/null +++ b/go/ql/lib/change-notes/2024-12-12-variadic-parameter-sources.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Source models defined using models-as-data now work for variadic parameters. diff --git a/go/ql/lib/change-notes/2024-12-13-os-args-model.md b/go/ql/lib/change-notes/2024-12-13-os-args-model.md new file mode 100644 index 000000000000..20a16d222e44 --- /dev/null +++ b/go/ql/lib/change-notes/2024-12-13-os-args-model.md @@ -0,0 +1,5 @@ +--- +category: minorAnalysis +--- +* Added a `commandargs` local source model for the `os.Args` variable. + diff --git a/go/ql/lib/change-notes/released/3.0.1.md b/go/ql/lib/change-notes/released/3.0.1.md deleted file mode 100644 index a8faff419436..000000000000 --- a/go/ql/lib/change-notes/released/3.0.1.md +++ /dev/null @@ -1,7 +0,0 @@ -## 3.0.1 - -### Minor Analysis Improvements - -* Added a `commandargs` local source model for the `os.Args` variable. -* Source models defined using models-as-data now work for variadic parameters. -* Data flow out of variadic parameters now works in more situations. Summary models defined using models-as-data work. Source models defined using models-as-data do not work yet. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index e3b15d965db6..33d3a2cd1139 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index a540b7905c35..4e72aa3857b5 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.1 +version: 3.0.1-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 838a8bce5eaa..c9044e55cdcb 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.1.5 - -No user-facing changes. - ## 1.1.4 ### Minor Analysis Improvements diff --git a/go/ql/src/change-notes/released/1.1.5.md b/go/ql/src/change-notes/released/1.1.5.md deleted file mode 100644 index 11a52a121d13..000000000000 --- a/go/ql/src/change-notes/released/1.1.5.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.1.5 - -No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index df39a9de059d..26cbcd3f123b 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.5 +lastReleaseVersion: 1.1.4 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 52d3c0012bad..36775d0d8620 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.5 +version: 1.1.5-dev groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index e7aa3c152dea..09ee80087e8b 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,24 +1,3 @@ -## 6.0.0 - -### Breaking Changes - -* The class `ControlFlowNode` (and by extension `BasicBlock`) is no longer - directly equatable to `Expr` and `Stmt`. Any queries that have been - exploiting these equalities, for example by using casts, will need minor - updates in order to fix any compilation errors. Conversions can be inserted - in either direction depending on what is most convenient. Available - conversions include `Expr.getControlFlowNode()`, `Stmt.getControlFlowNode()`, - `ControlFlowNode.asExpr()`, `ControlFlowNode.asStmt()`, and - `ControlFlowNode.asCall()`. Exit nodes were until now modelled as a - `ControlFlowNode` equal to its enclosing `Callable`; these are now instead - modelled by the class `ControlFlow::ExitNode`. - -### Minor Analysis Improvements - -* Added `java.io.File.getName()` as a path injection sanitizer. -* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. -* Added a sink for "Server-side request forgery" (`java/ssrf`) for the third parameter to org.springframework.web.client.RestTemplate.getForObject, when we cannot statically determine that it does not affect the host in the URL. - ## 5.0.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/released/6.0.0.md b/java/ql/lib/change-notes/2024-11-14-control-flow-graph-lightweight-IR-layer.md similarity index 50% rename from java/ql/lib/change-notes/released/6.0.0.md rename to java/ql/lib/change-notes/2024-11-14-control-flow-graph-lightweight-IR-layer.md index f66dd1b2bbf9..2fbb6a537c7d 100644 --- a/java/ql/lib/change-notes/released/6.0.0.md +++ b/java/ql/lib/change-notes/2024-11-14-control-flow-graph-lightweight-IR-layer.md @@ -1,7 +1,6 @@ -## 6.0.0 - -### Breaking Changes - +--- +category: breaking +--- * The class `ControlFlowNode` (and by extension `BasicBlock`) is no longer directly equatable to `Expr` and `Stmt`. Any queries that have been exploiting these equalities, for example by using casts, will need minor @@ -12,9 +11,3 @@ `ControlFlowNode.asCall()`. Exit nodes were until now modelled as a `ControlFlowNode` equal to its enclosing `Callable`; these are now instead modelled by the class `ControlFlow::ExitNode`. - -### Minor Analysis Improvements - -* Added `java.io.File.getName()` as a path injection sanitizer. -* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. -* Added a sink for "Server-side request forgery" (`java/ssrf`) for the third parameter to org.springframework.web.client.RestTemplate.getForObject, when we cannot statically determine that it does not affect the host in the URL. diff --git a/java/ql/lib/change-notes/2024-11-28-model-resttemplate-getforobject-third-parameter.md b/java/ql/lib/change-notes/2024-11-28-model-resttemplate-getforobject-third-parameter.md new file mode 100644 index 000000000000..4f45d19e5e8c --- /dev/null +++ b/java/ql/lib/change-notes/2024-11-28-model-resttemplate-getforobject-third-parameter.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added a sink for "Server-side request forgery" (`java/ssrf`) for the third parameter to org.springframework.web.client.RestTemplate.getForObject, when we cannot statically determine that it does not affect the host in the URL. diff --git a/java/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md b/java/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md new file mode 100644 index 000000000000..258c0e5326bc --- /dev/null +++ b/java/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. diff --git a/java/ql/lib/change-notes/2024-12-06-file-getname.md b/java/ql/lib/change-notes/2024-12-06-file-getname.md new file mode 100644 index 000000000000..b2d1d271ab55 --- /dev/null +++ b/java/ql/lib/change-notes/2024-12-06-file-getname.md @@ -0,0 +1,4 @@ +--- +category: minorAnalysis +--- +* Added `java.io.File.getName()` as a path injection sanitizer. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index f8c4fa43ccb7..c9e54136ca5c 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 5.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index d0490615f694..f892ca1c4500 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.0.0 +version: 5.0.1-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index c7148cba8d86..0bb38874b82f 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.1.11 - -No user-facing changes. - ## 1.1.10 ### Minor Analysis Improvements diff --git a/java/ql/src/change-notes/released/1.1.11.md b/java/ql/src/change-notes/released/1.1.11.md deleted file mode 100644 index c94f527264ea..000000000000 --- a/java/ql/src/change-notes/released/1.1.11.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.1.11 - -No user-facing changes. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 121f8cf035d3..4c01918d4144 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.11 +lastReleaseVersion: 1.1.10 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index dd530febd2ea..8ee211fb536f 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.11 +version: 1.1.11-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 7aa60446f0e6..ebe424935eb9 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,7 +1,3 @@ -## 2.2.1 - -No user-facing changes. - ## 2.2.0 ### Major Analysis Improvements diff --git a/javascript/ql/lib/change-notes/released/2.2.1.md b/javascript/ql/lib/change-notes/released/2.2.1.md deleted file mode 100644 index 62b48f9d2e87..000000000000 --- a/javascript/ql/lib/change-notes/released/2.2.1.md +++ /dev/null @@ -1,3 +0,0 @@ -## 2.2.1 - -No user-facing changes. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 863e3cd380d9..2f3083541950 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.2.1 +lastReleaseVersion: 2.2.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index d78821f08923..4d568ff48132 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.2.1 +version: 2.2.1-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 5bf4466796e9..195298ec89f1 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.2.6 - -No user-facing changes. - ## 1.2.5 No user-facing changes. diff --git a/javascript/ql/src/change-notes/released/1.2.6.md b/javascript/ql/src/change-notes/released/1.2.6.md deleted file mode 100644 index 0832850ff8c2..000000000000 --- a/javascript/ql/src/change-notes/released/1.2.6.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.2.6 - -No user-facing changes. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 24962f7ba24b..40355f0807f9 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.6 +lastReleaseVersion: 1.2.5 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 04e84d1ac741..78f0585027b5 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.2.6 +version: 1.2.6-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 490b5dc360a0..5d46c57bf4e2 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.14.md b/misc/suite-helpers/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/misc/suite-helpers/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index f14cabfe129c..eeb8f762b131 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.14 +version: 1.0.14-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index aabefe63a420..81c7659c4edd 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,14 +1,3 @@ -## 3.1.0 - -### New Features - -* Added support for parameter annotations in API graphs. This means that in a function definition such as `def foo(x: Bar): ...`, you can now use the `getInstanceFromAnnotation()` method to step from `Bar` to `x`. In addition to this, the `getAnInstance` method now also includes instances arising from parameter annotations. - -### Minor Analysis Improvements - -* Added modeling of `fastapi.Request` and `starlette.requests.Request` as sources of untrusted input, - and modeling of tainted data flow out of these request objects. - ## 3.0.0 ### Breaking Changes diff --git a/python/ql/lib/change-notes/released/3.1.0.md b/python/ql/lib/change-notes/2024-11-26-parameter-annotation-api-graph-support.md similarity index 58% rename from python/ql/lib/change-notes/released/3.1.0.md rename to python/ql/lib/change-notes/2024-11-26-parameter-annotation-api-graph-support.md index 50b4b8184b7e..57bb1b4a0780 100644 --- a/python/ql/lib/change-notes/released/3.1.0.md +++ b/python/ql/lib/change-notes/2024-11-26-parameter-annotation-api-graph-support.md @@ -1,10 +1,5 @@ -## 3.1.0 - -### New Features +--- +category: feature +--- - Added support for parameter annotations in API graphs. This means that in a function definition such as `def foo(x: Bar): ...`, you can now use the `getInstanceFromAnnotation()` method to step from `Bar` to `x`. In addition to this, the `getAnInstance` method now also includes instances arising from parameter annotations. - -### Minor Analysis Improvements - -* Added modeling of `fastapi.Request` and `starlette.requests.Request` as sources of untrusted input, - and modeling of tainted data flow out of these request objects. diff --git a/python/ql/lib/change-notes/2024-12-18-fastapi-request-modeling.md b/python/ql/lib/change-notes/2024-12-18-fastapi-request-modeling.md new file mode 100644 index 000000000000..adc7d39653f7 --- /dev/null +++ b/python/ql/lib/change-notes/2024-12-18-fastapi-request-modeling.md @@ -0,0 +1,5 @@ +--- +category: minorAnalysis +--- +* Added modeling of `fastapi.Request` and `starlette.requests.Request` as sources of untrusted input, + and modeling of tainted data flow out of these request objects. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 82f62960aa3b..33d3a2cd1139 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 8e015428c499..147933b96fe8 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.0 +version: 3.0.1-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index d5cacfc84018..c247e217acf3 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.4.0 - -### New Queries - -* The Server Side Template Injection query (`py/template-injection`), originally contributed to the experimental query pack by @porcupineyhairs, has been promoted to the main query suite. This query finds instances of templates for a template engine such as Jinja being constructed with user input. - ## 1.3.4 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.4.0.md b/python/ql/src/change-notes/2024-11-21-template-injection.md similarity index 78% rename from python/ql/src/change-notes/released/1.4.0.md rename to python/ql/src/change-notes/2024-11-21-template-injection.md index 02acaabcb984..7c604e9c9936 100644 --- a/python/ql/src/change-notes/released/1.4.0.md +++ b/python/ql/src/change-notes/2024-11-21-template-injection.md @@ -1,5 +1,4 @@ -## 1.4.0 - -### New Queries - -* The Server Side Template Injection query (`py/template-injection`), originally contributed to the experimental query pack by @porcupineyhairs, has been promoted to the main query suite. This query finds instances of templates for a template engine such as Jinja being constructed with user input. +--- +category: newQuery +--- +* The Server Side Template Injection query (`py/template-injection`), originally contributed to the experimental query pack by @porcupineyhairs, has been promoted to the main query suite. This query finds instances of templates for a template engine such as Jinja being constructed with user input. \ No newline at end of file diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index b8b2e97d5086..8263ddf2c8b8 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.3.4 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 9d330fc3526d..d83b6433ac64 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.0 +version: 1.3.5-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 9179de3b7d5f..737903a3232f 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,7 +1,3 @@ -## 3.0.1 - -No user-facing changes. - ## 3.0.0 ### Breaking Changes diff --git a/ruby/ql/lib/change-notes/released/3.0.1.md b/ruby/ql/lib/change-notes/released/3.0.1.md deleted file mode 100644 index ac5998ace618..000000000000 --- a/ruby/ql/lib/change-notes/released/3.0.1.md +++ /dev/null @@ -1,3 +0,0 @@ -## 3.0.1 - -No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index e3b15d965db6..33d3a2cd1139 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index a169addf8e71..ddf106c95bfa 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.1 +version: 3.0.1-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 7d341c3f8086..5fe04780136b 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.1.9 - -No user-facing changes. - ## 1.1.8 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.9.md b/ruby/ql/src/change-notes/released/1.1.9.md deleted file mode 100644 index f9d367d4248c..000000000000 --- a/ruby/ql/src/change-notes/released/1.1.9.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.1.9 - -No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 6f4795f3ea0b..64972659c426 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 1.1.8 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 72ff669503a6..43bfe75f566d 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.9 +version: 1.1.9-dev groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 5f4501ed1e3d..285b39a43598 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/1.0.14.md b/shared/controlflow/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/controlflow/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 590d3e1666d0..268f142bd1be 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 949660e33811..df038524d2d2 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,9 +1,3 @@ -## 1.1.8 - -### Minor Analysis Improvements - -* Added a module `DataFlow::DeduplicatePathGraph` that can be used to avoid generating duplicate path explanations in queries that use flow state. - ## 1.1.7 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/1.1.8.md b/shared/dataflow/change-notes/2023-10-02-deduplicate-path-graph.md similarity index 77% rename from shared/dataflow/change-notes/released/1.1.8.md rename to shared/dataflow/change-notes/2023-10-02-deduplicate-path-graph.md index d951e6bf0c73..30e71ade6afd 100644 --- a/shared/dataflow/change-notes/released/1.1.8.md +++ b/shared/dataflow/change-notes/2023-10-02-deduplicate-path-graph.md @@ -1,5 +1,4 @@ -## 1.1.8 - -### Minor Analysis Improvements - +--- +category: minorAnalysis +--- * Added a module `DataFlow::DeduplicatePathGraph` that can be used to avoid generating duplicate path explanations in queries that use flow state. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 64972659c426..759105565166 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.8 +lastReleaseVersion: 1.1.7 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index fe44120b3c12..6a8e8c3a4ae8 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.8 +version: 1.1.8-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 1b2146927e53..93a528a4f3c8 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.14.md b/shared/mad/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/mad/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 341373b22f54..125bcad622d8 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 993922ecc49d..6b25d16e0f73 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.14.md b/shared/rangeanalysis/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/rangeanalysis/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index efb29bbc02c0..62c8c1e46b6f 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 45bb8da81db2..54c3ed2b3070 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.14.md b/shared/regex/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/regex/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 8db7e73e336a..e2cda264dc86 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index d31fb6c6120c..01c19388c92f 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.14.md b/shared/ssa/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/ssa/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 1276fd498f74..b146ce5bc913 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 2d5ba191d2eb..3c6fa155a322 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.14.md b/shared/threat-models/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/threat-models/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index f337bfa721d9..6ec41bbcc04b 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.14 +version: 1.0.14-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index cc4652e04fff..1f4e7ad4ed3d 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.14.md b/shared/tutorial/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/tutorial/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 4c55d52356cf..6677c74eed4e 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index ac6192fd7d8b..dd8fb7a60b2a 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.14.md b/shared/typeflow/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/typeflow/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 15761af538a3..cd9e70bba8c4 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index f651b953118f..0ab05873af4d 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/1.0.14.md b/shared/typetracking/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/typetracking/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 224b85826c48..fbe63f0da01a 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 924a3fc0a7bf..c0c3cea39485 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.14.md b/shared/typos/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/typos/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 31f04e60666a..250f729ab5f5 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 9dd6c05d40a1..e03d990b7471 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,7 +1,3 @@ -## 2.0.1 - -No user-facing changes. - ## 2.0.0 ### Breaking Changes diff --git a/shared/util/change-notes/released/2.0.1.md b/shared/util/change-notes/released/2.0.1.md deleted file mode 100644 index b5b6d0dee915..000000000000 --- a/shared/util/change-notes/released/2.0.1.md +++ /dev/null @@ -1,3 +0,0 @@ -## 2.0.1 - -No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index fe974a4dbf37..0abe6ccede0f 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.1 +lastReleaseVersion: 2.0.0 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index da932a6ed36c..b327c25a3d90 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.1 +version: 2.0.1-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 6837f7507d85..c3ebc31994b2 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.14.md b/shared/xml/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/xml/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index a3ace631d1b2..76c408c29202 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 6e940e8d264a..28fcbceec8ef 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.14.md b/shared/yaml/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/shared/yaml/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 006f30012bb5..0c756e1edbbe 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.14 +version: 1.0.14-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index c976d0c85143..ba76b51c80e3 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,9 +1,3 @@ -## 3.1.0 - -### Major Analysis Improvements - -* Upgraded to allow analysis of Swift 6.0.2. - ## 3.0.0 ### Breaking Changes diff --git a/swift/ql/lib/change-notes/released/3.1.0.md b/swift/ql/lib/change-notes/2024-12-09-swift-6.md similarity index 51% rename from swift/ql/lib/change-notes/released/3.1.0.md rename to swift/ql/lib/change-notes/2024-12-09-swift-6.md index 655a8ad323a6..e32344b28d83 100644 --- a/swift/ql/lib/change-notes/released/3.1.0.md +++ b/swift/ql/lib/change-notes/2024-12-09-swift-6.md @@ -1,5 +1,4 @@ -## 3.1.0 - -### Major Analysis Improvements - +--- +category: majorAnalysis +--- * Upgraded to allow analysis of Swift 6.0.2. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 82f62960aa3b..33d3a2cd1139 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 91e4d06f5376..7752975faea0 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.0 +version: 3.0.1-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index a26a68434ebf..73ac6bef86d7 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,7 +1,3 @@ -## 1.0.14 - -No user-facing changes. - ## 1.0.13 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.14.md b/swift/ql/src/change-notes/released/1.0.14.md deleted file mode 100644 index 84f6736f1a1b..000000000000 --- a/swift/ql/src/change-notes/released/1.0.14.md +++ /dev/null @@ -1,3 +0,0 @@ -## 1.0.14 - -No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 3b484f28dfab..c3be7eb77163 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.13 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 1ce09dc09698..ec8e2cb9932b 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.14 +version: 1.0.14-dev groups: - swift - queries