diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 1759333d659d..d2e85ddb6a27 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.4.27 + +### Bug Fixes + +* Fixed a crash when analysing a `${{ ... }}` expression over around 300 characters in length. + ## 0.4.26 ### Major Analysis Improvements diff --git a/actions/ql/lib/change-notes/2026-01-23-long-expression-fix.md b/actions/ql/lib/change-notes/released/0.4.27.md similarity index 78% rename from actions/ql/lib/change-notes/2026-01-23-long-expression-fix.md rename to actions/ql/lib/change-notes/released/0.4.27.md index 31adf6058a7d..d56c7bd36e89 100644 --- a/actions/ql/lib/change-notes/2026-01-23-long-expression-fix.md +++ b/actions/ql/lib/change-notes/released/0.4.27.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.4.27 + +### Bug Fixes + * Fixed a crash when analysing a `${{ ... }}` expression over around 300 characters in length. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 06a4605c7674..5e24b634389f 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.26 +lastReleaseVersion: 0.4.27 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 27d4fa665e9c..aa29568caf7c 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.27-dev +version: 0.4.27 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index f667d2841851..ebf6b7214c99 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.6.19 + +No user-facing changes. + ## 0.6.18 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.6.19.md b/actions/ql/src/change-notes/released/0.6.19.md new file mode 100644 index 000000000000..db142fe8aed1 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.6.19.md @@ -0,0 +1,3 @@ +## 0.6.19 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index b694a16787b1..2baec50a823b 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.18 +lastReleaseVersion: 0.6.19 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index e93b555f030c..7b9f281601a7 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.19-dev +version: 0.6.19 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index a626fec99ae5..9aa9e9953b50 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,21 @@ +## 7.1.0 + +### New Features + +* Added a subclass `Embed` of `PreprocessorDirective` for C23 and C++26 `#embed` preprocessor directives. +* Added modules `DataFlow::ParameterizedBarrierGuard` and `DataFlow::ParameterizedInstructionBarrierGuard`. These modules provide the same features as `DataFlow::BarrierGuard` and `DataFlow::InstructionBarrierGuard`, but allow for an additional parameter to support properly using them in dataflow configurations that uses flow states. + +### Minor Analysis Improvements + +* The `Buffer.qll` library will no longer report incorrect buffer sizes on certain malformed databases. As a result, the queries `cpp/static-buffer-overflow`, `cpp/overflow-buffer`, `cpp/badly-bounded-write`, `cpp/overrunning-write`, `cpp/overrunning-write-with-float`, and `cpp/very-likely-overrunning-write` will report fewer false positives on such databases. +* Added `taint` summary models and `sql-injection` barrier models for the mySQL `mysql_real_escape_string` and `mysql_real_escape_string_quote` escaping functions. +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + +### Bug Fixes + +* Fixed a bug in the `GuardCondition` library which sometimes prevented binary logical operators from being recognized as guard conditions. As a result, queries using `GuardCondition` may see improved results. +* Fixed a bug which caused `Node.asDefinition()` to not have a result for certain assignments. + ## 7.0.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/2026-01-19-embed.md b/cpp/ql/lib/change-notes/2026-01-19-embed.md deleted file mode 100644 index 26d495277b5c..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-19-embed.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added a subclass `Embed` of `PreprocessorDirective` for C23 and C++26 `#embed` preprocessor directives. diff --git a/cpp/ql/lib/change-notes/2026-01-19-parameterized-barrier-guard.md b/cpp/ql/lib/change-notes/2026-01-19-parameterized-barrier-guard.md deleted file mode 100644 index 4f2d754c0b87..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-19-parameterized-barrier-guard.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added modules `DataFlow::ParameterizedBarrierGuard` and `DataFlow::ParameterizedInstructionBarrierGuard`. These modules provide the same features as `DataFlow::BarrierGuard` and `DataFlow::InstructionBarrierGuard`, but allow for an additional parameter to support properly using them in dataflow configurations that uses flow states. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2026-01-23-as-definition.md b/cpp/ql/lib/change-notes/2026-01-23-as-definition.md deleted file mode 100644 index 1f18562cdcd7..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-23-as-definition.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a bug which caused `Node.asDefinition()` to not have a result for certain assignments. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2026-01-23-mysql.md b/cpp/ql/lib/change-notes/2026-01-23-mysql.md deleted file mode 100644 index ee4268f8152c..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-23-mysql.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `taint` summary models and `sql-injection` barrier models for the mySQL `mysql_real_escape_string` and `mysql_real_escape_string_quote` escaping functions. diff --git a/cpp/ql/lib/change-notes/2026-01-26-buffer-overflow-fps.md b/cpp/ql/lib/change-notes/2026-01-26-buffer-overflow-fps.md deleted file mode 100644 index ea9a5ccf7988..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-26-buffer-overflow-fps.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The `Buffer.qll` library will no longer report incorrect buffer sizes on certain malformed databases. As a result, the queries `cpp/static-buffer-overflow`, `cpp/overflow-buffer`, `cpp/badly-bounded-write`, `cpp/overrunning-write`, `cpp/overrunning-write-with-float`, and `cpp/very-likely-overrunning-write` will report fewer false positives on such databases. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2026-01-30-guard-condition-logical-operators.md b/cpp/ql/lib/change-notes/2026-01-30-guard-condition-logical-operators.md deleted file mode 100644 index 646d9b3821f6..000000000000 --- a/cpp/ql/lib/change-notes/2026-01-30-guard-condition-logical-operators.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a bug in the `GuardCondition` library which sometimes prevented binary logical operators from being recognized as guard conditions. As a result, queries using `GuardCondition` may see improved results. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/7.1.0.md b/cpp/ql/lib/change-notes/released/7.1.0.md new file mode 100644 index 000000000000..7565cb4dab9e --- /dev/null +++ b/cpp/ql/lib/change-notes/released/7.1.0.md @@ -0,0 +1,17 @@ +## 7.1.0 + +### New Features + +* Added a subclass `Embed` of `PreprocessorDirective` for C23 and C++26 `#embed` preprocessor directives. +* Added modules `DataFlow::ParameterizedBarrierGuard` and `DataFlow::ParameterizedInstructionBarrierGuard`. These modules provide the same features as `DataFlow::BarrierGuard` and `DataFlow::InstructionBarrierGuard`, but allow for an additional parameter to support properly using them in dataflow configurations that uses flow states. + +### Minor Analysis Improvements + +* The `Buffer.qll` library will no longer report incorrect buffer sizes on certain malformed databases. As a result, the queries `cpp/static-buffer-overflow`, `cpp/overflow-buffer`, `cpp/badly-bounded-write`, `cpp/overrunning-write`, `cpp/overrunning-write-with-float`, and `cpp/very-likely-overrunning-write` will report fewer false positives on such databases. +* Added `taint` summary models and `sql-injection` barrier models for the mySQL `mysql_real_escape_string` and `mysql_real_escape_string_quote` escaping functions. +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + +### Bug Fixes + +* Fixed a bug in the `GuardCondition` library which sometimes prevented binary logical operators from being recognized as guard conditions. As a result, queries using `GuardCondition` may see improved results. +* Fixed a bug which caused `Node.asDefinition()` to not have a result for certain assignments. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index e0db21c78694..dcaaa76112a6 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.0.0 +lastReleaseVersion: 7.1.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 4ee4779041d3..ac07194106ad 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 7.0.1-dev +version: 7.1.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 02a055ee266c..61792c6a700b 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.5.10 + +No user-facing changes. + ## 1.5.9 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/released/1.5.10.md b/cpp/ql/src/change-notes/released/1.5.10.md new file mode 100644 index 000000000000..829c5f1f1a1a --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.5.10.md @@ -0,0 +1,3 @@ +## 1.5.10 + +No user-facing changes. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 5ac7d08bfbfc..fda54b31bffb 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.9 +lastReleaseVersion: 1.5.10 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 30fd4696695f..232836a053d8 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.5.10-dev +version: 1.5.10 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 029e03a4c9e6..68238efa1101 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.58 + +No user-facing changes. + ## 1.7.57 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.58.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.58.md new file mode 100644 index 000000000000..b6b1debf611f --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.58.md @@ -0,0 +1,3 @@ +## 1.7.58 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 4b2fd88d6a3e..422196097f2a 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.57 +lastReleaseVersion: 1.7.58 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 59e35f8f8a24..09feed992650 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.58-dev +version: 1.7.58 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 029e03a4c9e6..68238efa1101 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.58 + +No user-facing changes. + ## 1.7.57 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.58.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.58.md new file mode 100644 index 000000000000..b6b1debf611f --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.58.md @@ -0,0 +1,3 @@ +## 1.7.58 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 4b2fd88d6a3e..422196097f2a 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.57 +lastReleaseVersion: 1.7.58 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index a37381968efa..6f7ea3b625bf 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.58-dev +version: 1.7.58 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 371e10c370a3..2910824c1b72 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 5.4.6 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* C# 14: Support for null-conditional assignments (such as `c?.Prop = p`). Furthermore, the `MaybeNullExpr` class now takes null-conditional access (such as `?.`) into account when modeling potential null values. + ## 5.4.5 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2026-01-14-null-conditional-assignments.md b/csharp/ql/lib/change-notes/2026-01-14-null-conditional-assignments.md deleted file mode 100644 index ebce4c187e02..000000000000 --- a/csharp/ql/lib/change-notes/2026-01-14-null-conditional-assignments.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 14: Support for null-conditional assignments (such as `c?.Prop = p`). Furthermore, the `MaybeNullExpr` class now takes null-conditional access (such as `?.`) into account when modeling potential null values. diff --git a/csharp/ql/lib/change-notes/2026-01-16-summarized-callable.md b/csharp/ql/lib/change-notes/2026-01-16-summarized-callable.md deleted file mode 100644 index 02c453207d4d..000000000000 --- a/csharp/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/released/5.4.6.md b/csharp/ql/lib/change-notes/released/5.4.6.md new file mode 100644 index 000000000000..31fab7d4be88 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.4.6.md @@ -0,0 +1,6 @@ +## 5.4.6 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* C# 14: Support for null-conditional assignments (such as `c?.Prop = p`). Furthermore, the `MaybeNullExpr` class now takes null-conditional access (such as `?.`) into account when modeling potential null values. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index e79e40bd1d84..2f1d6ff78a82 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.4.5 +lastReleaseVersion: 5.4.6 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 235030e26015..28d4a36b3ab7 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.4.6-dev +version: 5.4.6 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index b3c3276ae5cc..d532951fadc8 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.6.1 + +No user-facing changes. + ## 1.6.0 ### Query Metadata Changes diff --git a/csharp/ql/src/change-notes/released/1.6.1.md b/csharp/ql/src/change-notes/released/1.6.1.md new file mode 100644 index 000000000000..898f6201ed73 --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.6.1.md @@ -0,0 +1,3 @@ +## 1.6.1 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index c4f0b07d5336..ef7a789e0cf1 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.0 +lastReleaseVersion: 1.6.1 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 2ea09521187e..85d9dbf9ead1 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.6.1-dev +version: 1.6.1 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 8718668249fd..d0c8171cdf67 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.41.md b/go/ql/consistency-queries/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index b164141b8281..c07633f30b96 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.41-dev +version: 1.0.41 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 97391d2342af..126058537cef 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 6.0.1 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + ## 6.0.0 ### Breaking Changes diff --git a/javascript/ql/lib/change-notes/2026-01-16-summarized-callable.md b/go/ql/lib/change-notes/released/6.0.1.md similarity index 85% rename from javascript/ql/lib/change-notes/2026-01-16-summarized-callable.md rename to go/ql/lib/change-notes/released/6.0.1.md index b6e5101617ed..7b5e8dad5a86 100644 --- a/javascript/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ b/go/ql/lib/change-notes/released/6.0.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 6.0.1 + +### Minor Analysis Improvements + * The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index f8c4fa43ccb7..d1f3c68c8120 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 6.0.1 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 669112f115df..af34da5d7d5a 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 6.0.1-dev +version: 6.0.1 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 8a2f1355eec8..f2475a92207c 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.5.5 + +No user-facing changes. + ## 1.5.4 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.5.5.md b/go/ql/src/change-notes/released/1.5.5.md new file mode 100644 index 000000000000..76d0ac894891 --- /dev/null +++ b/go/ql/src/change-notes/released/1.5.5.md @@ -0,0 +1,3 @@ +## 1.5.5 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index c216828ee1c3..1c73e9d9ce9e 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.4 +lastReleaseVersion: 1.5.5 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index da64d00094fa..20e25202476b 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.5.5-dev +version: 1.5.5 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index cd0db2ab96f5..a100137879d1 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,24 @@ +## 8.0.0 + +### Breaking Changes + +* Support for Kotlin 1.6.x and 1.7.x series has been dropped + +### New Features + +* Kotlin versions up to 2.3.0\ *x* are now supported. + +### Minor Analysis Improvements + +* Added support for Struts 7.x package names in the Struts framework library. The library now recognizes both the legacy `com.opensymphony.xwork2` package names (Struts 2.x-6.x) and the new `org.apache.struts2` package names (Struts 7.x+), maintaining backward compatibility while enabling analysis of code using the latest Struts versions. +* The query `java/unreleased-lock` no longer applies to lock types with names ending in "Pool", as these typically manage a collection of resources and the `lock` and `unlock` methods typically only lock one resource at a time. This may lead to a reduction in false positives. +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* When Maven-compatible private package registries are configured for an organisation for Default Setup, CodeQL will now configure Maven to also use these as plugin repositories. CodeQL previously already configured Maven to use them as regular package repositories. This should now allow Maven plugins to be obtained from private registries. + +### Bug Fixes + +* Kotlin: The Kotlin extractor now registers as the last IR generation extension, ensuring that code generated by other compiler plugins (such as kotlinx.serialization) is correctly captured. + ## 7.8.4 ### Minor Analysis Improvements diff --git a/java/ql/lib/change-notes/2026-01-07-kotlin-2_3.md b/java/ql/lib/change-notes/2026-01-07-kotlin-2_3.md deleted file mode 100644 index 82253f0e5e8c..000000000000 --- a/java/ql/lib/change-notes/2026-01-07-kotlin-2_3.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Kotlin versions up to 2.3.0\ *x* are now supported. diff --git a/java/ql/lib/change-notes/2026-01-07-kotlin-mimimum_suppoted_version.md b/java/ql/lib/change-notes/2026-01-07-kotlin-mimimum_suppoted_version.md deleted file mode 100644 index 6877579f6c67..000000000000 --- a/java/ql/lib/change-notes/2026-01-07-kotlin-mimimum_suppoted_version.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Support for Kotlin 1.6.x and 1.7.x series has been dropped diff --git a/java/ql/lib/change-notes/2026-01-09-maven-plugin-registries.md b/java/ql/lib/change-notes/2026-01-09-maven-plugin-registries.md deleted file mode 100644 index d3d42e9325b8..000000000000 --- a/java/ql/lib/change-notes/2026-01-09-maven-plugin-registries.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* When Maven-compatible private package registries are configured for an organisation for Default Setup, CodeQL will now configure Maven to also use these as plugin repositories. CodeQL previously already configured Maven to use them as regular package repositories. This should now allow Maven plugins to be obtained from private registries. diff --git a/java/ql/lib/change-notes/2026-01-26-kotlin-extractor-load-last.md b/java/ql/lib/change-notes/2026-01-26-kotlin-extractor-load-last.md deleted file mode 100644 index e6b496073b9c..000000000000 --- a/java/ql/lib/change-notes/2026-01-26-kotlin-extractor-load-last.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Kotlin: The Kotlin extractor now registers as the last IR generation extension, ensuring that code generated by other compiler plugins (such as kotlinx.serialization) is correctly captured. diff --git a/java/ql/lib/change-notes/2026-01-27-struts-7-support.md b/java/ql/lib/change-notes/2026-01-27-struts-7-support.md deleted file mode 100644 index a94a03567ee2..000000000000 --- a/java/ql/lib/change-notes/2026-01-27-struts-7-support.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added support for Struts 7.x package names in the Struts framework library. The library now recognizes both the legacy `com.opensymphony.xwork2` package names (Struts 2.x-6.x) and the new `org.apache.struts2` package names (Struts 7.x+), maintaining backward compatibility while enabling analysis of code using the latest Struts versions. diff --git a/java/ql/lib/change-notes/2026-01-27-unreleased-lock-pools.md b/java/ql/lib/change-notes/2026-01-27-unreleased-lock-pools.md deleted file mode 100644 index 6ac8a19a7622..000000000000 --- a/java/ql/lib/change-notes/2026-01-27-unreleased-lock-pools.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `java/unreleased-lock` no longer applies to lock types with names ending in "Pool", as these typically manage a collection of resources and the `lock` and `unlock` methods typically only lock one resource at a time. This may lead to a reduction in false positives. diff --git a/java/ql/lib/change-notes/released/8.0.0.md b/java/ql/lib/change-notes/released/8.0.0.md new file mode 100644 index 000000000000..efe82a7db857 --- /dev/null +++ b/java/ql/lib/change-notes/released/8.0.0.md @@ -0,0 +1,20 @@ +## 8.0.0 + +### Breaking Changes + +* Support for Kotlin 1.6.x and 1.7.x series has been dropped + +### New Features + +* Kotlin versions up to 2.3.0 are now supported. + +### Minor Analysis Improvements + +* Added support for Struts 7.x package names in the Struts framework library. The library now recognizes both the legacy `com.opensymphony.xwork2` package names (Struts 2.x-6.x) and the new `org.apache.struts2` package names (Struts 7.x+), maintaining backward compatibility while enabling analysis of code using the latest Struts versions. +* The query `java/unreleased-lock` no longer applies to lock types with names ending in "Pool", as these typically manage a collection of resources and the `lock` and `unlock` methods typically only lock one resource at a time. This may lead to a reduction in false positives. +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* When Maven-compatible private package registries are configured for an organisation for Default Setup, CodeQL will now configure Maven to also use these as plugin repositories. CodeQL previously already configured Maven to use them as regular package repositories. This should now allow Maven plugins to be obtained from private registries. + +### Bug Fixes + +* Kotlin: The Kotlin extractor now registers as the last IR generation extension, ensuring that code generated by other compiler plugins (such as kotlinx.serialization) is correctly captured. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index c8145c25bf66..0f48687270dc 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.8.4 +lastReleaseVersion: 8.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 37de3eb6f72e..eb1a7f632c7f 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.8.5-dev +version: 8.0.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 113c024d14a2..a7307229a499 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.10.6 + +No user-facing changes. + ## 1.10.5 ### Minor Analysis Improvements diff --git a/java/ql/src/change-notes/released/1.10.6.md b/java/ql/src/change-notes/released/1.10.6.md new file mode 100644 index 000000000000..eb53de204df9 --- /dev/null +++ b/java/ql/src/change-notes/released/1.10.6.md @@ -0,0 +1,3 @@ +## 1.10.6 + +No user-facing changes. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 2b3096747d57..4e10f150f2e7 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.10.5 +lastReleaseVersion: 1.10.6 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 54fa90952dd2..570c8bf7e184 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.10.6-dev +version: 1.10.6 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 08f8bb5fbb26..c599ea0799bd 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.6.21 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + ## 2.6.20 ### Minor Analysis Improvements diff --git a/java/ql/lib/change-notes/2026-01-16-summarized-callable.md b/javascript/ql/lib/change-notes/released/2.6.21.md similarity index 85% rename from java/ql/lib/change-notes/2026-01-16-summarized-callable.md rename to javascript/ql/lib/change-notes/released/2.6.21.md index b6e5101617ed..4307ee556052 100644 --- a/java/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ b/javascript/ql/lib/change-notes/released/2.6.21.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 2.6.21 + +### Minor Analysis Improvements + * The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 3c7db9023cc3..872f4f9807c1 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.20 +lastReleaseVersion: 2.6.21 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index b9abf987afb6..2e54148b68c4 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.21-dev +version: 2.6.21 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index d3a5bfa8f82a..50da6325746f 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.3.1 + +No user-facing changes. + ## 2.3.0 ### Major Analysis Improvements diff --git a/javascript/ql/src/change-notes/released/2.3.1.md b/javascript/ql/src/change-notes/released/2.3.1.md new file mode 100644 index 000000000000..af7c45e68fa9 --- /dev/null +++ b/javascript/ql/src/change-notes/released/2.3.1.md @@ -0,0 +1,3 @@ +## 2.3.1 + +No user-facing changes. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 5936154675ae..530699ffeccb 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.3.0 +lastReleaseVersion: 2.3.1 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 9eb734b9d11a..ad56a74e9b5d 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 2.3.1-dev +version: 2.3.1 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 3fa0771beca0..0d796d324391 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.41.md b/misc/suite-helpers/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index b01f97237d37..4a0344c0f0f8 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.41-dev +version: 1.0.41 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index ee4f1b529e36..a273dc2628b2 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 6.1.0 + +### New Features + +* It is now possible to refer to list elements in the Python models-as-data language, via the `ListElement` path. + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* Added experimental query `py/prompt-injection` to detect potential prompt injection vulnerabilities in code using LLMs. +* Added taint flow model and type model for `agents` and `openai` modules. +* Remote flow sources for the `websockets` package have been modeled. + ## 6.0.0 ### Breaking Changes diff --git a/python/ql/lib/change-notes/2025-12-01-websockets.md b/python/ql/lib/change-notes/2025-12-01-websockets.md deleted file mode 100644 index 6b4db223d7b3..000000000000 --- a/python/ql/lib/change-notes/2025-12-01-websockets.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Remote flow sources for the `websockets` package have been modeled. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2026-01-02-prompt-injection.md b/python/ql/lib/change-notes/2026-01-02-prompt-injection.md deleted file mode 100644 index 21f04216ecbc..000000000000 --- a/python/ql/lib/change-notes/2026-01-02-prompt-injection.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Added experimental query `py/prompt-injection` to detect potential prompt injection vulnerabilities in code using LLMs. -* Added taint flow model and type model for `agents` and `openai` modules. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2026-01-16-summarized-callable.md b/python/ql/lib/change-notes/2026-01-16-summarized-callable.md deleted file mode 100644 index b6e5101617ed..000000000000 --- a/python/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/python/ql/lib/change-notes/2026-01-20-support-ListElement-in-python-MaD.md b/python/ql/lib/change-notes/2026-01-20-support-ListElement-in-python-MaD.md deleted file mode 100644 index cf51193efe9b..000000000000 --- a/python/ql/lib/change-notes/2026-01-20-support-ListElement-in-python-MaD.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* It is now possible to refer to list elements in the Python models-as-data language, via the `ListElement` path. diff --git a/python/ql/lib/change-notes/released/6.1.0.md b/python/ql/lib/change-notes/released/6.1.0.md new file mode 100644 index 000000000000..633ade1f67c1 --- /dev/null +++ b/python/ql/lib/change-notes/released/6.1.0.md @@ -0,0 +1,12 @@ +## 6.1.0 + +### New Features + +* It is now possible to refer to list elements in the Python models-as-data language, via the `ListElement` path. + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* Added experimental query `py/prompt-injection` to detect potential prompt injection vulnerabilities in code using LLMs. +* Added taint flow model and type model for `agents` and `openai` modules. +* Remote flow sources for the `websockets` package have been modeled. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index f8c4fa43ccb7..22247782f3e5 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 6.1.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index ff6a730a2ea3..db127bd57920 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 6.0.1-dev +version: 6.1.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 9b09127c0ae7..3f9a869decca 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.6 + +No user-facing changes. + ## 1.7.5 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.7.6.md b/python/ql/src/change-notes/released/1.7.6.md new file mode 100644 index 000000000000..fe2a0f02e7e9 --- /dev/null +++ b/python/ql/src/change-notes/released/1.7.6.md @@ -0,0 +1,3 @@ +## 1.7.6 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 83aebd7c12a0..1f68518dba9b 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.5 +lastReleaseVersion: 1.7.6 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 8b797e76e6a3..5725ef1f6644 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.7.6-dev +version: 1.7.6 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index e6150ac44bc0..408f2f3144f1 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 5.1.9 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + ## 5.1.8 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2026-01-16-summarized-callable.md b/ruby/ql/lib/change-notes/2026-01-16-summarized-callable.md deleted file mode 100644 index b6e5101617ed..000000000000 --- a/ruby/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/cpp/ql/lib/change-notes/2026-01-16-summarized-callable.md b/ruby/ql/lib/change-notes/released/5.1.9.md similarity index 85% rename from cpp/ql/lib/change-notes/2026-01-16-summarized-callable.md rename to ruby/ql/lib/change-notes/released/5.1.9.md index b6e5101617ed..5455fb9f5e21 100644 --- a/cpp/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ b/ruby/ql/lib/change-notes/released/5.1.9.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 5.1.9 + +### Minor Analysis Improvements + * The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 8ffbb79d2249..f9bf26052618 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.1.8 +lastReleaseVersion: 5.1.9 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 1a0515cc7766..6a48d4be1a25 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 5.1.9-dev +version: 5.1.9 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 43e207937df8..fd5b24f166e5 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.5.6 + +No user-facing changes. + ## 1.5.5 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.5.6.md b/ruby/ql/src/change-notes/released/1.5.6.md new file mode 100644 index 000000000000..17fb577dc9e3 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.5.6.md @@ -0,0 +1,3 @@ +## 1.5.6 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 1c73e9d9ce9e..9a0b3c9461b0 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.5 +lastReleaseVersion: 1.5.6 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 8534baf24823..a14269c692a9 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.5.6-dev +version: 1.5.6 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index c06726370dfd..b913efd02f06 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.2.5 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* Added type inference support for the `FnMut(..) -> ..` and `Fn(..) -> ..` traits. They now work in type parameter bounds and are implemented by closures. + ## 0.2.4 ### Minor Analysis Improvements @@ -6,7 +13,7 @@ * Renamed the `Adt` class to `TypeItem` and moved common predicates from `Struct`, `Enum`, and `Union` to `TypeItem`. * Added models for the Axum web application framework. * Reading content of a value now carries taint if the value itself is tainted. For instance, if `s` is tainted then `s.field` is also tainted. This generally improves taint flow. -* The call graph is now more precise for calls that target a trait function with a default implemention. This reduces the number of false positives for data flow queries. +* The call graph is now more precise for calls that target a trait function with a default implementation. This reduces the number of false positives for data flow queries. * Improved type inference for raw pointers (`*const` and `*mut`). This includes type inference for the raw borrow operators (`&raw const` and `&raw mut`) and dereferencing of raw pointers. ## 0.2.3 diff --git a/rust/ql/lib/change-notes/2026-01-16-summarized-callable.md b/rust/ql/lib/change-notes/2026-01-16-summarized-callable.md deleted file mode 100644 index b6e5101617ed..000000000000 --- a/rust/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/rust/ql/lib/change-notes/2026-01-16-type-inference-closures.md b/rust/ql/lib/change-notes/2026-01-16-type-inference-closures.md deleted file mode 100644 index 1e093b74dbe9..000000000000 --- a/rust/ql/lib/change-notes/2026-01-16-type-inference-closures.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added type inference support for the `FnMut(..) -> ..` and `Fn(..) -> ..` traits. They now work in type parameter bounds and are implemented by closures. \ No newline at end of file diff --git a/rust/ql/lib/change-notes/released/0.2.5.md b/rust/ql/lib/change-notes/released/0.2.5.md new file mode 100644 index 000000000000..5145bf5a9b21 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.2.5.md @@ -0,0 +1,6 @@ +## 0.2.5 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. +* Added type inference support for the `FnMut(..) -> ..` and `Fn(..) -> ..` traits. They now work in type parameter bounds and are implemented by closures. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 7f1e3841dcd6..211454ed3064 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.4 +lastReleaseVersion: 0.2.5 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index c976e05b9b9c..4f33822af63e 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.2.5-dev +version: 0.2.5 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 6f17ba911334..fe96ab5baad8 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.26 + +No user-facing changes. + ## 0.1.25 ### Minor Analysis Improvements diff --git a/rust/ql/src/change-notes/released/0.1.26.md b/rust/ql/src/change-notes/released/0.1.26.md new file mode 100644 index 000000000000..79d28dd1b409 --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.26.md @@ -0,0 +1,3 @@ +## 0.1.26 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 44eb1ee2438f..e2396c0532fa 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.25 +lastReleaseVersion: 0.1.26 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index e8873e003399..61ff8e48167c 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.26-dev +version: 0.1.26 groups: - rust - queries diff --git a/shared/concepts/CHANGELOG.md b/shared/concepts/CHANGELOG.md index 161a50915157..29dba07c3659 100644 --- a/shared/concepts/CHANGELOG.md +++ b/shared/concepts/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.15 + +No user-facing changes. + ## 0.0.14 No user-facing changes. diff --git a/shared/concepts/change-notes/released/0.0.15.md b/shared/concepts/change-notes/released/0.0.15.md new file mode 100644 index 000000000000..7af9c05f23fb --- /dev/null +++ b/shared/concepts/change-notes/released/0.0.15.md @@ -0,0 +1,3 @@ +## 0.0.15 + +No user-facing changes. diff --git a/shared/concepts/codeql-pack.release.yml b/shared/concepts/codeql-pack.release.yml index ca29e45d0a67..dff35216fc69 100644 --- a/shared/concepts/codeql-pack.release.yml +++ b/shared/concepts/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.14 +lastReleaseVersion: 0.0.15 diff --git a/shared/concepts/qlpack.yml b/shared/concepts/qlpack.yml index 0acc44a77e60..40350f8b33c0 100644 --- a/shared/concepts/qlpack.yml +++ b/shared/concepts/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/concepts -version: 0.0.15-dev +version: 0.0.15 groups: shared library: true dependencies: diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index a0141238ede7..1fd69b562a68 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.25 + +No user-facing changes. + ## 2.0.24 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.25.md b/shared/controlflow/change-notes/released/2.0.25.md new file mode 100644 index 000000000000..ca39dd50c697 --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.25.md @@ -0,0 +1,3 @@ +## 2.0.25 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 1460df314d51..f54d86201189 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.24 +lastReleaseVersion: 2.0.25 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index fe9c546bd4a1..f8e86c3b834d 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.25-dev +version: 2.0.25 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 2190138e037d..49857928ffe2 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.25 + +No user-facing changes. + ## 2.0.24 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.25.md b/shared/dataflow/change-notes/released/2.0.25.md new file mode 100644 index 000000000000..ca39dd50c697 --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.25.md @@ -0,0 +1,3 @@ +## 2.0.25 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 1460df314d51..f54d86201189 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.24 +lastReleaseVersion: 2.0.25 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index f1c036d74dfb..86bfb0a5b055 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.25-dev +version: 2.0.25 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 40e305bad35d..bc1ee96895ce 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.41.md b/shared/mad/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/mad/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index f001129240fb..349dc19aa337 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index 172f2ee2b297..d5252bfc0c4f 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.19 + +No user-facing changes. + ## 0.0.18 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.19.md b/shared/quantum/change-notes/released/0.0.19.md new file mode 100644 index 000000000000..914e4c9074d1 --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.19.md @@ -0,0 +1,3 @@ +## 0.0.19 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index a0d2bc59d979..f406319f372e 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.18 +lastReleaseVersion: 0.0.19 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index de32dad32f19..f394fab96541 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.19-dev +version: 0.0.19 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 7c9e43f8ff3e..3dde8baa4b06 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.41.md b/shared/rangeanalysis/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 5ecb12275e6b..846d83bc93c4 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index ecf8ebbe399d..2e3dacffd923 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.41.md b/shared/regex/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/regex/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index c57a3de51890..80b995f7c50c 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 03f338ad3e62..62c6ce297f98 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.17 + +No user-facing changes. + ## 2.0.16 No user-facing changes. diff --git a/shared/ssa/change-notes/released/2.0.17.md b/shared/ssa/change-notes/released/2.0.17.md new file mode 100644 index 000000000000..0ed1592726c8 --- /dev/null +++ b/shared/ssa/change-notes/released/2.0.17.md @@ -0,0 +1,3 @@ +## 2.0.17 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index c10461a785cf..a5f7c15c020f 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.16 +lastReleaseVersion: 2.0.17 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index ac679f613eaf..c1b143d616ef 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 2.0.17-dev +version: 2.0.17 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 8718668249fd..d0c8171cdf67 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.41.md b/shared/threat-models/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index f16ee329d007..634544a4eb87 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.41-dev +version: 1.0.41 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 6a9afbe090a3..833807725734 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.41.md b/shared/tutorial/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 8ffe365de0a9..93b95d3210c3 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 37cada863622..caecb313a31a 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.41.md b/shared/typeflow/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 773700f2ac14..4512e9553856 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index 2daa850c9cd1..356c331b5dfe 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.22 + +No user-facing changes. + ## 0.0.21 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.22.md b/shared/typeinference/change-notes/released/0.0.22.md new file mode 100644 index 000000000000..002267474382 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.22.md @@ -0,0 +1,3 @@ +## 0.0.22 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index 0c15c351db40..11aaa2243f57 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.21 +lastReleaseVersion: 0.0.22 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index 323af6d7d5da..6bb3be57eba1 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.22-dev +version: 0.0.22 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 769f68dd3dd5..8504089f8728 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.25 + +No user-facing changes. + ## 2.0.24 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.25.md b/shared/typetracking/change-notes/released/2.0.25.md new file mode 100644 index 000000000000..ca39dd50c697 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.25.md @@ -0,0 +1,3 @@ +## 2.0.25 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 1460df314d51..f54d86201189 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.24 +lastReleaseVersion: 2.0.25 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 3c2758e09077..fe7582bbde63 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.25-dev +version: 2.0.25 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 5ef65f8781d4..cfbec562b146 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.41.md b/shared/typos/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/typos/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 07154ada5476..e587573ad405 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 1c818e1f21da..904aa45e034f 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.28 + +No user-facing changes. + ## 2.0.27 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.28.md b/shared/util/change-notes/released/2.0.28.md new file mode 100644 index 000000000000..3f9412b6e635 --- /dev/null +++ b/shared/util/change-notes/released/2.0.28.md @@ -0,0 +1,3 @@ +## 2.0.28 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index a047558f018b..ec5bd6ba3691 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.27 +lastReleaseVersion: 2.0.28 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 0b10b300a47d..dd8c960aa0bb 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.28-dev +version: 2.0.28 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index cb8550f886bc..7a85ea45c7b3 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.41.md b/shared/xml/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/xml/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 86ac177bdbfc..ad13296db46a 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 82c9137dbbf5..78b636e0288b 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.41 + +No user-facing changes. + ## 1.0.40 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.41.md b/shared/yaml/change-notes/released/1.0.41.md new file mode 100644 index 000000000000..b9e9f7a5c44d --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.41.md @@ -0,0 +1,3 @@ +## 1.0.41 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 326e4b5da674..d496eab6eb95 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.40 +lastReleaseVersion: 1.0.41 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 9e3dec90b6d5..03ddecb8a053 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.41-dev +version: 1.0.41 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index efad17a8e8b2..f4fe2159e07a 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 6.2.1 + +### Minor Analysis Improvements + +* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. + ## 6.2.0 ### Major Analysis Improvements diff --git a/swift/ql/lib/change-notes/2026-01-16-summarized-callable.md b/swift/ql/lib/change-notes/2026-01-16-summarized-callable.md deleted file mode 100644 index b6e5101617ed..000000000000 --- a/swift/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/go/ql/lib/change-notes/2026-01-16-summarized-callable.md b/swift/ql/lib/change-notes/released/6.2.1.md similarity index 85% rename from go/ql/lib/change-notes/2026-01-16-summarized-callable.md rename to swift/ql/lib/change-notes/released/6.2.1.md index b6e5101617ed..bd50d7adb368 100644 --- a/go/ql/lib/change-notes/2026-01-16-summarized-callable.md +++ b/swift/ql/lib/change-notes/released/6.2.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 6.2.1 + +### Minor Analysis Improvements + * The predicate `SummarizedCallable.propagatesFlow` has been extended with the columns `Provenance p` and `boolean isExact`, and as a consequence the predicates `SummarizedCallable.hasProvenance` and `SummarizedCallable.hasExactModel` have been removed. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 35c46c599f08..8e36085279d5 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.2.0 +lastReleaseVersion: 6.2.1 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 84482a72c80a..9fc1e4731dd8 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 6.2.1-dev +version: 6.2.1 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index b555657d87af..bf6367cf668b 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.2.15 + +No user-facing changes. + ## 1.2.14 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.2.15.md b/swift/ql/src/change-notes/released/1.2.15.md new file mode 100644 index 000000000000..c73741aba037 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.2.15.md @@ -0,0 +1,3 @@ +## 1.2.15 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index ef55ed9564a8..df8980e5dd26 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.14 +lastReleaseVersion: 1.2.15 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 61ca00447b22..86538099f759 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.2.15-dev +version: 1.2.15 groups: - swift - queries