Release preparation for version 2.24.3#21401
Merged
oscarsj merged 2 commits intocodeql-cli-2.24.3from Mar 2, 2026
Merged
Conversation
github-actions
bot
added
C#
JS
C++
documentation
Java
Python
Go
Ruby
Rust
Contributor
There was a problem hiding this comment.
Pull request overview
Release prep for the CodeQL 2.24.3 release train by finalizing pack versions (dropping -dev), updating lastReleaseVersion markers, and rolling change-note fragments into released notes + changelogs across multiple packs.
Changes:
- Promote multiple packs from
*-devto released versions and update correspondingcodeql-pack.release.ymllastReleaseVersion. - Add new
change-notes/released/<version>.mdentries and prepend matching entries to each packCHANGELOG.md. - Consolidate several dated change-note fragments into the released notes (notably for Python, C++, Java, Rust, Ruby, C#), deleting the fragments after incorporation.
Reviewed changes
Copilot reviewed 175 out of 175 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| swift/ql/src/qlpack.yml | Finalize Swift queries pack version 1.2.17 (drop -dev). |
| swift/ql/src/codeql-pack.release.yml | Update Swift queries lastReleaseVersion to 1.2.17. |
| swift/ql/src/change-notes/released/1.2.17.md | Add released notes for 1.2.17 (no user-facing changes). |
| swift/ql/src/CHANGELOG.md | Add 1.2.17 entry. |
| swift/ql/lib/qlpack.yml | Finalize Swift lib pack version 6.2.3 (drop -dev). |
| swift/ql/lib/codeql-pack.release.yml | Update Swift lib lastReleaseVersion to 6.2.3. |
| swift/ql/lib/change-notes/released/6.2.3.md | Add released notes for 6.2.3 (no user-facing changes). |
| swift/ql/lib/CHANGELOG.md | Add 6.2.3 entry. |
| shared/yaml/qlpack.yml | Finalize YAML pack version 1.0.43 (drop -dev). |
| shared/yaml/codeql-pack.release.yml | Update YAML lastReleaseVersion to 1.0.43. |
| shared/yaml/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/yaml/CHANGELOG.md | Add 1.0.43 entry. |
| shared/xml/qlpack.yml | Finalize XML pack version 1.0.43 (drop -dev). |
| shared/xml/codeql-pack.release.yml | Update XML lastReleaseVersion to 1.0.43. |
| shared/xml/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/xml/CHANGELOG.md | Add 1.0.43 entry. |
| shared/util/qlpack.yml | Finalize util pack version 2.0.30 (drop -dev). |
| shared/util/codeql-pack.release.yml | Update util lastReleaseVersion to 2.0.30. |
| shared/util/change-notes/released/2.0.30.md | Add released notes for 2.0.30 (no user-facing changes). |
| shared/util/CHANGELOG.md | Add 2.0.30 entry. |
| shared/typos/qlpack.yml | Finalize typos pack version 1.0.43 (drop -dev). |
| shared/typos/codeql-pack.release.yml | Update typos lastReleaseVersion to 1.0.43. |
| shared/typos/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/typos/CHANGELOG.md | Add 1.0.43 entry. |
| shared/typetracking/qlpack.yml | Finalize typetracking pack version 2.0.27 (drop -dev). |
| shared/typetracking/codeql-pack.release.yml | Update typetracking lastReleaseVersion to 2.0.27. |
| shared/typetracking/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/typetracking/CHANGELOG.md | Add 2.0.27 entry. |
| shared/typeinference/qlpack.yml | Finalize typeinference pack version 0.0.24 (drop -dev). |
| shared/typeinference/codeql-pack.release.yml | Update typeinference lastReleaseVersion to 0.0.24. |
| shared/typeinference/change-notes/released/0.0.24.md | Add released notes for 0.0.24 (no user-facing changes). |
| shared/typeinference/CHANGELOG.md | Add 0.0.24 entry. |
| shared/typeflow/qlpack.yml | Finalize typeflow pack version 1.0.43 (drop -dev). |
| shared/typeflow/codeql-pack.release.yml | Update typeflow lastReleaseVersion to 1.0.43. |
| shared/typeflow/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/typeflow/CHANGELOG.md | Add 1.0.43 entry. |
| shared/tutorial/qlpack.yml | Finalize tutorial pack version 1.0.43 (drop -dev). |
| shared/tutorial/codeql-pack.release.yml | Update tutorial lastReleaseVersion to 1.0.43. |
| shared/tutorial/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/tutorial/CHANGELOG.md | Add 1.0.43 entry. |
| shared/threat-models/qlpack.yml | Finalize threat-models pack version 1.0.43 (drop -dev). |
| shared/threat-models/codeql-pack.release.yml | Update threat-models lastReleaseVersion to 1.0.43. |
| shared/threat-models/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/threat-models/CHANGELOG.md | Add 1.0.43 entry. |
| shared/ssa/qlpack.yml | Finalize ssa pack version 2.0.19 (drop -dev). |
| shared/ssa/codeql-pack.release.yml | Update ssa lastReleaseVersion to 2.0.19. |
| shared/ssa/change-notes/released/2.0.19.md | Add released notes for 2.0.19 (no user-facing changes). |
| shared/ssa/CHANGELOG.md | Add 2.0.19 entry. |
| shared/regex/qlpack.yml | Finalize regex pack version 1.0.43 (drop -dev). |
| shared/regex/codeql-pack.release.yml | Update regex lastReleaseVersion to 1.0.43. |
| shared/regex/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/regex/CHANGELOG.md | Add 1.0.43 entry. |
| shared/rangeanalysis/qlpack.yml | Finalize rangeanalysis pack version 1.0.43 (drop -dev). |
| shared/rangeanalysis/codeql-pack.release.yml | Update rangeanalysis lastReleaseVersion to 1.0.43. |
| shared/rangeanalysis/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/rangeanalysis/CHANGELOG.md | Add 1.0.43 entry. |
| shared/quantum/qlpack.yml | Finalize quantum pack version 0.0.21 (drop -dev). |
| shared/quantum/codeql-pack.release.yml | Update quantum lastReleaseVersion to 0.0.21. |
| shared/quantum/change-notes/released/0.0.21.md | Add released notes for 0.0.21 (no user-facing changes). |
| shared/quantum/CHANGELOG.md | Add 0.0.21 entry. |
| shared/mad/qlpack.yml | Finalize mad pack version 1.0.43 (drop -dev). |
| shared/mad/codeql-pack.release.yml | Update mad lastReleaseVersion to 1.0.43. |
| shared/mad/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/mad/CHANGELOG.md | Add 1.0.43 entry. |
| shared/dataflow/qlpack.yml | Finalize dataflow pack version 2.0.27 (drop -dev). |
| shared/dataflow/codeql-pack.release.yml | Update dataflow lastReleaseVersion to 2.0.27. |
| shared/dataflow/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/dataflow/CHANGELOG.md | Add 2.0.27 entry. |
| shared/controlflow/qlpack.yml | Finalize controlflow pack version 2.0.27 (drop -dev). |
| shared/controlflow/codeql-pack.release.yml | Update controlflow lastReleaseVersion to 2.0.27. |
| shared/controlflow/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/controlflow/CHANGELOG.md | Add 2.0.27 entry. |
| shared/concepts/qlpack.yml | Finalize concepts pack version 0.0.17 (drop -dev). |
| shared/concepts/codeql-pack.release.yml | Update concepts lastReleaseVersion to 0.0.17. |
| shared/concepts/change-notes/released/0.0.17.md | Add released notes for 0.0.17 (no user-facing changes). |
| shared/concepts/CHANGELOG.md | Add 0.0.17 entry. |
| rust/ql/src/qlpack.yml | Finalize Rust queries pack version 0.1.28 (drop -dev). |
| rust/ql/src/codeql-pack.release.yml | Update Rust queries lastReleaseVersion to 0.1.28. |
| rust/ql/src/change-notes/released/0.1.28.md | Convert released note to heading-based format and include content. |
| rust/ql/src/CHANGELOG.md | Add 0.1.28 entry reflecting diagnostic metric removal. |
| rust/ql/lib/qlpack.yml | Finalize Rust lib pack version 0.2.7 (drop -dev). |
| rust/ql/lib/codeql-pack.release.yml | Update Rust lib lastReleaseVersion to 0.2.7. |
| rust/ql/lib/change-notes/released/0.2.7.md | Convert released note to heading-based format and include neutral model support. |
| rust/ql/lib/CHANGELOG.md | Add 0.2.7 entry. |
| ruby/ql/src/qlpack.yml | Finalize Ruby queries pack version 1.5.8 (drop -dev). |
| ruby/ql/src/codeql-pack.release.yml | Update Ruby queries lastReleaseVersion to 1.5.8. |
| ruby/ql/src/change-notes/released/1.5.8.md | Add released notes for 1.5.8 (no user-facing changes). |
| ruby/ql/src/CHANGELOG.md | Add 1.5.8 entry. |
| ruby/ql/lib/qlpack.yml | Finalize Ruby lib pack version 5.1.11 (drop -dev). |
| ruby/ql/lib/codeql-pack.release.yml | Update Ruby lib lastReleaseVersion to 5.1.11. |
| ruby/ql/lib/change-notes/released/5.1.11.md | Convert released note to heading-based format and include Shellwords taint-flow note. |
| ruby/ql/lib/CHANGELOG.md | Add 5.1.11 entry. |
| python/ql/src/qlpack.yml | Finalize Python queries pack version 1.7.8 (drop -dev). |
| python/ql/src/codeql-pack.release.yml | Update Python queries lastReleaseVersion to 1.7.8. |
| python/ql/src/change-notes/released/1.7.8.md | Add released notes for 1.7.8 (no user-facing changes). |
| python/ql/src/CHANGELOG.md | Add 1.7.8 entry. |
| python/ql/lib/qlpack.yml | Release Python lib pack as 7.0.0 (major bump) for breaking/overlay-related changes. |
| python/ql/lib/codeql-pack.release.yml | Update Python lib lastReleaseVersion to 7.0.0. |
| python/ql/lib/change-notes/released/7.0.0.md | Add released notes for 7.0.0 (breaking + overlay + minor improvements). |
| python/ql/lib/change-notes/2026-02-18-remove-points-to-from-metrics.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-18-add-overlay-annotations.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-09-ssrf_test_case_cleanup_and_new_ssrf_barriers.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-08-guards-compared-to-boolean-literals.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/CHANGELOG.md | Add 7.0.0 entry and normalize an older “e.g.” instance. |
| misc/suite-helpers/qlpack.yml | Finalize suite-helpers pack version 1.0.43 (drop -dev). |
| misc/suite-helpers/codeql-pack.release.yml | Update suite-helpers lastReleaseVersion to 1.0.43. |
| misc/suite-helpers/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| misc/suite-helpers/CHANGELOG.md | Add 1.0.43 entry. |
| javascript/ql/src/qlpack.yml | Finalize JS queries pack version 2.3.3 (drop -dev). |
| javascript/ql/src/codeql-pack.release.yml | Update JS queries lastReleaseVersion to 2.3.3. |
| javascript/ql/src/change-notes/released/2.3.3.md | Add released notes for 2.3.3 (no user-facing changes). |
| javascript/ql/src/CHANGELOG.md | Add 2.3.3 entry. |
| javascript/ql/lib/qlpack.yml | Finalize JS lib pack version 2.6.23 (drop -dev). |
| javascript/ql/lib/codeql-pack.release.yml | Update JS lib lastReleaseVersion to 2.6.23. |
| javascript/ql/lib/change-notes/released/2.6.23.md | Convert released note to heading-based format and include React observer modelling note. |
| javascript/ql/lib/CHANGELOG.md | Add 2.6.23 entry. |
| java/ql/src/qlpack.yml | Finalize Java queries pack version 1.10.8 (drop -dev). |
| java/ql/src/codeql-pack.release.yml | Update Java queries lastReleaseVersion to 1.10.8. |
| java/ql/src/change-notes/released/1.10.8.md | Convert released note to heading-based format and include Java 26 + version-selection notes. |
| java/ql/src/change-notes/2026-02-17-support-java-26.md | Remove fragment after consolidating into released notes. |
| java/ql/src/CHANGELOG.md | Add 1.10.8 entry. |
| java/ql/lib/qlpack.yml | Finalize Java lib pack version 8.1.1 (drop -dev). |
| java/ql/lib/codeql-pack.release.yml | Update Java lib lastReleaseVersion to 8.1.1. |
| java/ql/lib/change-notes/released/8.1.1.md | Convert released note to heading-based format and include javax/jakarta modelling note. |
| java/ql/lib/CHANGELOG.md | Add 8.1.1 entry. |
| go/ql/src/qlpack.yml | Finalize Go queries pack version 1.5.7 (drop -dev). |
| go/ql/src/codeql-pack.release.yml | Update Go queries lastReleaseVersion to 1.5.7. |
| go/ql/src/change-notes/released/1.5.7.md | Add released notes for 1.5.7 (no user-facing changes). |
| go/ql/src/CHANGELOG.md | Add 1.5.7 entry. |
| go/ql/lib/qlpack.yml | Finalize Go lib pack version 7.0.1 (drop -dev). |
| go/ql/lib/codeql-pack.release.yml | Update Go lib lastReleaseVersion to 7.0.1. |
| go/ql/lib/change-notes/released/7.0.1.md | Add released notes for 7.0.1 (no user-facing changes). |
| go/ql/lib/CHANGELOG.md | Add 7.0.1 entry. |
| go/ql/consistency-queries/qlpack.yml | Finalize Go consistency queries pack version 1.0.43 (drop -dev). |
| go/ql/consistency-queries/codeql-pack.release.yml | Update Go consistency queries lastReleaseVersion to 1.0.43. |
| go/ql/consistency-queries/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| go/ql/consistency-queries/CHANGELOG.md | Add 1.0.43 entry. |
| csharp/ql/src/qlpack.yml | Finalize C# queries pack version 1.6.3 (drop -dev). |
| csharp/ql/src/codeql-pack.release.yml | Update C# queries lastReleaseVersion to 1.6.3. |
| csharp/ql/src/change-notes/released/1.6.3.md | Add released notes for 1.6.3 (no user-facing changes). |
| csharp/ql/src/CHANGELOG.md | Add 1.6.3 entry. |
| csharp/ql/lib/qlpack.yml | Finalize C# lib pack version 5.4.8 (drop -dev). |
| csharp/ql/lib/codeql-pack.release.yml | Update C# lib lastReleaseVersion to 5.4.8. |
| csharp/ql/lib/change-notes/released/5.4.8.md | Convert released note to heading-based format and include C# 14 + partial-member fix notes. |
| csharp/ql/lib/change-notes/2026-02-16-partial-events.md | Remove fragment after consolidating into released notes. |
| csharp/ql/lib/change-notes/2026-02-12-field-keyword.md | Remove fragment after consolidating into released notes. |
| csharp/ql/lib/CHANGELOG.md | Add 5.4.8 entry. |
| csharp/ql/campaigns/Solorigate/src/qlpack.yml | Finalize Solorigate queries pack version 1.7.60 (drop -dev). |
| csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml | Update Solorigate queries lastReleaseVersion to 1.7.60. |
| csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.60.md | Add released notes for 1.7.60 (no user-facing changes). |
| csharp/ql/campaigns/Solorigate/src/CHANGELOG.md | Add 1.7.60 entry. |
| csharp/ql/campaigns/Solorigate/lib/qlpack.yml | Finalize Solorigate lib pack version 1.7.60 (drop -dev). |
| csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml | Update Solorigate lib lastReleaseVersion to 1.7.60. |
| csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.60.md | Add released notes for 1.7.60 (no user-facing changes). |
| csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md | Add 1.7.60 entry. |
| cpp/ql/src/qlpack.yml | Finalize C++ queries pack version 1.5.12 (drop -dev). |
| cpp/ql/src/codeql-pack.release.yml | Update C++ queries lastReleaseVersion to 1.5.12. |
| cpp/ql/src/change-notes/released/1.5.12.md | Add released notes for 1.5.12 (no user-facing changes). |
| cpp/ql/src/CHANGELOG.md | Add 1.5.12 entry. |
| cpp/ql/lib/qlpack.yml | Release C++ lib pack as 8.0.0 (major bump) for breaking changes. |
| cpp/ql/lib/codeql-pack.release.yml | Update C++ lib lastReleaseVersion to 8.0.0. |
| cpp/ql/lib/change-notes/released/8.0.0.md | Add released notes for 8.0.0 (breaking/must-flow/leap-year/must-flow fix). |
| cpp/ql/lib/change-notes/2026-02-24-barrier-guards.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-14-must-flow.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-14-must-flow-fix.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-06-UncheckedLeapYearAfterModification_Refactor.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/CHANGELOG.md | Add 8.0.0 entry. |
| actions/ql/src/qlpack.yml | Finalize Actions queries pack version 0.6.21 (drop -dev). |
| actions/ql/src/codeql-pack.release.yml | Update Actions queries lastReleaseVersion to 0.6.21. |
| actions/ql/src/change-notes/released/0.6.21.md | Add released notes for 0.6.21 (no user-facing changes). |
| actions/ql/src/CHANGELOG.md | Add 0.6.21 entry. |
| actions/ql/lib/qlpack.yml | Finalize Actions lib pack version 0.4.29 (drop -dev). |
| actions/ql/lib/codeql-pack.release.yml | Update Actions lib lastReleaseVersion to 0.4.29. |
| actions/ql/lib/change-notes/released/0.4.29.md | Add released notes for 0.4.29 (no user-facing changes). |
| actions/ql/lib/CHANGELOG.md | Add 0.4.29 entry. |
|
|
||
| ### Minor Analysis Improvements | ||
|
|
||
| * Added new full SSRF sanitization barrier from the new AntiSSRF library. |
There was a problem hiding this comment.
Trailing whitespace at end of this bullet line (after "library.") makes diffs noisy and can trip markdown linters. Please remove the extra space.
|
|
||
| ### Minor Analysis Improvements | ||
|
|
||
| * Added new full SSRF sanitization barrier from the new AntiSSRF library. |
There was a problem hiding this comment.
Trailing whitespace at end of this bullet line (after "library.") makes diffs noisy and can trip markdown linters. Please remove the extra space.
Contributor
There was a problem hiding this comment.
Pull request overview
Release prep for the CodeQL 2.24.3 release train by finalizing pack versions (dropping -dev), updating lastReleaseVersion markers, and rolling change-note fragments into released notes + changelogs across multiple packs.
Changes:
- Promote multiple packs from
*-devto released versions and update correspondingcodeql-pack.release.ymllastReleaseVersion. - Add new
change-notes/released/<version>.mdentries and prepend matching entries to each packCHANGELOG.md. - Consolidate several dated change-note fragments into the released notes (notably for Python, C++, Java, Rust, Ruby, C#), deleting the fragments after incorporation.
Reviewed changes
Copilot reviewed 175 out of 175 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| swift/ql/src/qlpack.yml | Finalize Swift queries pack version 1.2.17 (drop -dev). |
| swift/ql/src/codeql-pack.release.yml | Update Swift queries lastReleaseVersion to 1.2.17. |
| swift/ql/src/change-notes/released/1.2.17.md | Add released notes for 1.2.17 (no user-facing changes). |
| swift/ql/src/CHANGELOG.md | Add 1.2.17 entry. |
| swift/ql/lib/qlpack.yml | Finalize Swift lib pack version 6.2.3 (drop -dev). |
| swift/ql/lib/codeql-pack.release.yml | Update Swift lib lastReleaseVersion to 6.2.3. |
| swift/ql/lib/change-notes/released/6.2.3.md | Add released notes for 6.2.3 (no user-facing changes). |
| swift/ql/lib/CHANGELOG.md | Add 6.2.3 entry. |
| shared/yaml/qlpack.yml | Finalize YAML pack version 1.0.43 (drop -dev). |
| shared/yaml/codeql-pack.release.yml | Update YAML lastReleaseVersion to 1.0.43. |
| shared/yaml/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/yaml/CHANGELOG.md | Add 1.0.43 entry. |
| shared/xml/qlpack.yml | Finalize XML pack version 1.0.43 (drop -dev). |
| shared/xml/codeql-pack.release.yml | Update XML lastReleaseVersion to 1.0.43. |
| shared/xml/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/xml/CHANGELOG.md | Add 1.0.43 entry. |
| shared/util/qlpack.yml | Finalize util pack version 2.0.30 (drop -dev). |
| shared/util/codeql-pack.release.yml | Update util lastReleaseVersion to 2.0.30. |
| shared/util/change-notes/released/2.0.30.md | Add released notes for 2.0.30 (no user-facing changes). |
| shared/util/CHANGELOG.md | Add 2.0.30 entry. |
| shared/typos/qlpack.yml | Finalize typos pack version 1.0.43 (drop -dev). |
| shared/typos/codeql-pack.release.yml | Update typos lastReleaseVersion to 1.0.43. |
| shared/typos/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/typos/CHANGELOG.md | Add 1.0.43 entry. |
| shared/typetracking/qlpack.yml | Finalize typetracking pack version 2.0.27 (drop -dev). |
| shared/typetracking/codeql-pack.release.yml | Update typetracking lastReleaseVersion to 2.0.27. |
| shared/typetracking/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/typetracking/CHANGELOG.md | Add 2.0.27 entry. |
| shared/typeinference/qlpack.yml | Finalize typeinference pack version 0.0.24 (drop -dev). |
| shared/typeinference/codeql-pack.release.yml | Update typeinference lastReleaseVersion to 0.0.24. |
| shared/typeinference/change-notes/released/0.0.24.md | Add released notes for 0.0.24 (no user-facing changes). |
| shared/typeinference/CHANGELOG.md | Add 0.0.24 entry. |
| shared/typeflow/qlpack.yml | Finalize typeflow pack version 1.0.43 (drop -dev). |
| shared/typeflow/codeql-pack.release.yml | Update typeflow lastReleaseVersion to 1.0.43. |
| shared/typeflow/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/typeflow/CHANGELOG.md | Add 1.0.43 entry. |
| shared/tutorial/qlpack.yml | Finalize tutorial pack version 1.0.43 (drop -dev). |
| shared/tutorial/codeql-pack.release.yml | Update tutorial lastReleaseVersion to 1.0.43. |
| shared/tutorial/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/tutorial/CHANGELOG.md | Add 1.0.43 entry. |
| shared/threat-models/qlpack.yml | Finalize threat-models pack version 1.0.43 (drop -dev). |
| shared/threat-models/codeql-pack.release.yml | Update threat-models lastReleaseVersion to 1.0.43. |
| shared/threat-models/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/threat-models/CHANGELOG.md | Add 1.0.43 entry. |
| shared/ssa/qlpack.yml | Finalize ssa pack version 2.0.19 (drop -dev). |
| shared/ssa/codeql-pack.release.yml | Update ssa lastReleaseVersion to 2.0.19. |
| shared/ssa/change-notes/released/2.0.19.md | Add released notes for 2.0.19 (no user-facing changes). |
| shared/ssa/CHANGELOG.md | Add 2.0.19 entry. |
| shared/regex/qlpack.yml | Finalize regex pack version 1.0.43 (drop -dev). |
| shared/regex/codeql-pack.release.yml | Update regex lastReleaseVersion to 1.0.43. |
| shared/regex/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/regex/CHANGELOG.md | Add 1.0.43 entry. |
| shared/rangeanalysis/qlpack.yml | Finalize rangeanalysis pack version 1.0.43 (drop -dev). |
| shared/rangeanalysis/codeql-pack.release.yml | Update rangeanalysis lastReleaseVersion to 1.0.43. |
| shared/rangeanalysis/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/rangeanalysis/CHANGELOG.md | Add 1.0.43 entry. |
| shared/quantum/qlpack.yml | Finalize quantum pack version 0.0.21 (drop -dev). |
| shared/quantum/codeql-pack.release.yml | Update quantum lastReleaseVersion to 0.0.21. |
| shared/quantum/change-notes/released/0.0.21.md | Add released notes for 0.0.21 (no user-facing changes). |
| shared/quantum/CHANGELOG.md | Add 0.0.21 entry. |
| shared/mad/qlpack.yml | Finalize mad pack version 1.0.43 (drop -dev). |
| shared/mad/codeql-pack.release.yml | Update mad lastReleaseVersion to 1.0.43. |
| shared/mad/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| shared/mad/CHANGELOG.md | Add 1.0.43 entry. |
| shared/dataflow/qlpack.yml | Finalize dataflow pack version 2.0.27 (drop -dev). |
| shared/dataflow/codeql-pack.release.yml | Update dataflow lastReleaseVersion to 2.0.27. |
| shared/dataflow/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/dataflow/CHANGELOG.md | Add 2.0.27 entry. |
| shared/controlflow/qlpack.yml | Finalize controlflow pack version 2.0.27 (drop -dev). |
| shared/controlflow/codeql-pack.release.yml | Update controlflow lastReleaseVersion to 2.0.27. |
| shared/controlflow/change-notes/released/2.0.27.md | Add released notes for 2.0.27 (no user-facing changes). |
| shared/controlflow/CHANGELOG.md | Add 2.0.27 entry. |
| shared/concepts/qlpack.yml | Finalize concepts pack version 0.0.17 (drop -dev). |
| shared/concepts/codeql-pack.release.yml | Update concepts lastReleaseVersion to 0.0.17. |
| shared/concepts/change-notes/released/0.0.17.md | Add released notes for 0.0.17 (no user-facing changes). |
| shared/concepts/CHANGELOG.md | Add 0.0.17 entry. |
| rust/ql/src/qlpack.yml | Finalize Rust queries pack version 0.1.28 (drop -dev). |
| rust/ql/src/codeql-pack.release.yml | Update Rust queries lastReleaseVersion to 0.1.28. |
| rust/ql/src/change-notes/released/0.1.28.md | Convert released note to heading-based format and include content. |
| rust/ql/src/CHANGELOG.md | Add 0.1.28 entry reflecting diagnostic metric removal. |
| rust/ql/lib/qlpack.yml | Finalize Rust lib pack version 0.2.7 (drop -dev). |
| rust/ql/lib/codeql-pack.release.yml | Update Rust lib lastReleaseVersion to 0.2.7. |
| rust/ql/lib/change-notes/released/0.2.7.md | Convert released note to heading-based format and include neutral model support. |
| rust/ql/lib/CHANGELOG.md | Add 0.2.7 entry. |
| ruby/ql/src/qlpack.yml | Finalize Ruby queries pack version 1.5.8 (drop -dev). |
| ruby/ql/src/codeql-pack.release.yml | Update Ruby queries lastReleaseVersion to 1.5.8. |
| ruby/ql/src/change-notes/released/1.5.8.md | Add released notes for 1.5.8 (no user-facing changes). |
| ruby/ql/src/CHANGELOG.md | Add 1.5.8 entry. |
| ruby/ql/lib/qlpack.yml | Finalize Ruby lib pack version 5.1.11 (drop -dev). |
| ruby/ql/lib/codeql-pack.release.yml | Update Ruby lib lastReleaseVersion to 5.1.11. |
| ruby/ql/lib/change-notes/released/5.1.11.md | Convert released note to heading-based format and include Shellwords taint-flow note. |
| ruby/ql/lib/CHANGELOG.md | Add 5.1.11 entry. |
| python/ql/src/qlpack.yml | Finalize Python queries pack version 1.7.8 (drop -dev). |
| python/ql/src/codeql-pack.release.yml | Update Python queries lastReleaseVersion to 1.7.8. |
| python/ql/src/change-notes/released/1.7.8.md | Add released notes for 1.7.8 (no user-facing changes). |
| python/ql/src/CHANGELOG.md | Add 1.7.8 entry. |
| python/ql/lib/qlpack.yml | Release Python lib pack as 7.0.0 (major bump) for breaking/overlay-related changes. |
| python/ql/lib/codeql-pack.release.yml | Update Python lib lastReleaseVersion to 7.0.0. |
| python/ql/lib/change-notes/released/7.0.0.md | Add released notes for 7.0.0 (breaking + overlay + minor improvements). |
| python/ql/lib/change-notes/2026-02-18-remove-points-to-from-metrics.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-18-add-overlay-annotations.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-09-ssrf_test_case_cleanup_and_new_ssrf_barriers.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/change-notes/2026-02-08-guards-compared-to-boolean-literals.md | Remove fragment after consolidating into released notes. |
| python/ql/lib/CHANGELOG.md | Add 7.0.0 entry and normalize an older “e.g.” instance. |
| misc/suite-helpers/qlpack.yml | Finalize suite-helpers pack version 1.0.43 (drop -dev). |
| misc/suite-helpers/codeql-pack.release.yml | Update suite-helpers lastReleaseVersion to 1.0.43. |
| misc/suite-helpers/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| misc/suite-helpers/CHANGELOG.md | Add 1.0.43 entry. |
| javascript/ql/src/qlpack.yml | Finalize JS queries pack version 2.3.3 (drop -dev). |
| javascript/ql/src/codeql-pack.release.yml | Update JS queries lastReleaseVersion to 2.3.3. |
| javascript/ql/src/change-notes/released/2.3.3.md | Add released notes for 2.3.3 (no user-facing changes). |
| javascript/ql/src/CHANGELOG.md | Add 2.3.3 entry. |
| javascript/ql/lib/qlpack.yml | Finalize JS lib pack version 2.6.23 (drop -dev). |
| javascript/ql/lib/codeql-pack.release.yml | Update JS lib lastReleaseVersion to 2.6.23. |
| javascript/ql/lib/change-notes/released/2.6.23.md | Convert released note to heading-based format and include React observer modelling note. |
| javascript/ql/lib/CHANGELOG.md | Add 2.6.23 entry. |
| java/ql/src/qlpack.yml | Finalize Java queries pack version 1.10.8 (drop -dev). |
| java/ql/src/codeql-pack.release.yml | Update Java queries lastReleaseVersion to 1.10.8. |
| java/ql/src/change-notes/released/1.10.8.md | Convert released note to heading-based format and include Java 26 + version-selection notes. |
| java/ql/src/change-notes/2026-02-17-support-java-26.md | Remove fragment after consolidating into released notes. |
| java/ql/src/CHANGELOG.md | Add 1.10.8 entry. |
| java/ql/lib/qlpack.yml | Finalize Java lib pack version 8.1.1 (drop -dev). |
| java/ql/lib/codeql-pack.release.yml | Update Java lib lastReleaseVersion to 8.1.1. |
| java/ql/lib/change-notes/released/8.1.1.md | Convert released note to heading-based format and include javax/jakarta modelling note. |
| java/ql/lib/CHANGELOG.md | Add 8.1.1 entry. |
| go/ql/src/qlpack.yml | Finalize Go queries pack version 1.5.7 (drop -dev). |
| go/ql/src/codeql-pack.release.yml | Update Go queries lastReleaseVersion to 1.5.7. |
| go/ql/src/change-notes/released/1.5.7.md | Add released notes for 1.5.7 (no user-facing changes). |
| go/ql/src/CHANGELOG.md | Add 1.5.7 entry. |
| go/ql/lib/qlpack.yml | Finalize Go lib pack version 7.0.1 (drop -dev). |
| go/ql/lib/codeql-pack.release.yml | Update Go lib lastReleaseVersion to 7.0.1. |
| go/ql/lib/change-notes/released/7.0.1.md | Add released notes for 7.0.1 (no user-facing changes). |
| go/ql/lib/CHANGELOG.md | Add 7.0.1 entry. |
| go/ql/consistency-queries/qlpack.yml | Finalize Go consistency queries pack version 1.0.43 (drop -dev). |
| go/ql/consistency-queries/codeql-pack.release.yml | Update Go consistency queries lastReleaseVersion to 1.0.43. |
| go/ql/consistency-queries/change-notes/released/1.0.43.md | Add released notes for 1.0.43 (no user-facing changes). |
| go/ql/consistency-queries/CHANGELOG.md | Add 1.0.43 entry. |
| csharp/ql/src/qlpack.yml | Finalize C# queries pack version 1.6.3 (drop -dev). |
| csharp/ql/src/codeql-pack.release.yml | Update C# queries lastReleaseVersion to 1.6.3. |
| csharp/ql/src/change-notes/released/1.6.3.md | Add released notes for 1.6.3 (no user-facing changes). |
| csharp/ql/src/CHANGELOG.md | Add 1.6.3 entry. |
| csharp/ql/lib/qlpack.yml | Finalize C# lib pack version 5.4.8 (drop -dev). |
| csharp/ql/lib/codeql-pack.release.yml | Update C# lib lastReleaseVersion to 5.4.8. |
| csharp/ql/lib/change-notes/released/5.4.8.md | Convert released note to heading-based format and include C# 14 + partial-member fix notes. |
| csharp/ql/lib/change-notes/2026-02-16-partial-events.md | Remove fragment after consolidating into released notes. |
| csharp/ql/lib/change-notes/2026-02-12-field-keyword.md | Remove fragment after consolidating into released notes. |
| csharp/ql/lib/CHANGELOG.md | Add 5.4.8 entry. |
| csharp/ql/campaigns/Solorigate/src/qlpack.yml | Finalize Solorigate queries pack version 1.7.60 (drop -dev). |
| csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml | Update Solorigate queries lastReleaseVersion to 1.7.60. |
| csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.60.md | Add released notes for 1.7.60 (no user-facing changes). |
| csharp/ql/campaigns/Solorigate/src/CHANGELOG.md | Add 1.7.60 entry. |
| csharp/ql/campaigns/Solorigate/lib/qlpack.yml | Finalize Solorigate lib pack version 1.7.60 (drop -dev). |
| csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml | Update Solorigate lib lastReleaseVersion to 1.7.60. |
| csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.60.md | Add released notes for 1.7.60 (no user-facing changes). |
| csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md | Add 1.7.60 entry. |
| cpp/ql/src/qlpack.yml | Finalize C++ queries pack version 1.5.12 (drop -dev). |
| cpp/ql/src/codeql-pack.release.yml | Update C++ queries lastReleaseVersion to 1.5.12. |
| cpp/ql/src/change-notes/released/1.5.12.md | Add released notes for 1.5.12 (no user-facing changes). |
| cpp/ql/src/CHANGELOG.md | Add 1.5.12 entry. |
| cpp/ql/lib/qlpack.yml | Release C++ lib pack as 8.0.0 (major bump) for breaking changes. |
| cpp/ql/lib/codeql-pack.release.yml | Update C++ lib lastReleaseVersion to 8.0.0. |
| cpp/ql/lib/change-notes/released/8.0.0.md | Add released notes for 8.0.0 (breaking/must-flow/leap-year/must-flow fix). |
| cpp/ql/lib/change-notes/2026-02-24-barrier-guards.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-14-must-flow.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-14-must-flow-fix.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/change-notes/2026-02-06-UncheckedLeapYearAfterModification_Refactor.md | Remove fragment after consolidating into released notes. |
| cpp/ql/lib/CHANGELOG.md | Add 8.0.0 entry. |
| actions/ql/src/qlpack.yml | Finalize Actions queries pack version 0.6.21 (drop -dev). |
| actions/ql/src/codeql-pack.release.yml | Update Actions queries lastReleaseVersion to 0.6.21. |
| actions/ql/src/change-notes/released/0.6.21.md | Add released notes for 0.6.21 (no user-facing changes). |
| actions/ql/src/CHANGELOG.md | Add 0.6.21 entry. |
| actions/ql/lib/qlpack.yml | Finalize Actions lib pack version 0.4.29 (drop -dev). |
| actions/ql/lib/codeql-pack.release.yml | Update Actions lib lastReleaseVersion to 0.4.29. |
| actions/ql/lib/change-notes/released/0.4.29.md | Add released notes for 0.4.29 (no user-facing changes). |
| actions/ql/lib/CHANGELOG.md | Add 0.4.29 entry. |
|
|
||
| ### Minor Analysis Improvements | ||
|
|
||
| * Added new full SSRF sanitization barrier from the new AntiSSRF library. |
There was a problem hiding this comment.
Trailing whitespace at end of this bullet line (after "library.") makes diffs noisy and can trip markdown linters. Please remove the extra space.
|
|
||
| ### Minor Analysis Improvements | ||
|
|
||
| * Added new full SSRF sanitization barrier from the new AntiSSRF library. |
There was a problem hiding this comment.
Trailing whitespace at end of this bullet line (after "library.") makes diffs noisy and can trip markdown linters. Please remove the extra space.
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
oscarsj
approved these changes
Mar 2, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.