github · mbg · Apr 27, 2026 · Apr 27, 2026 · Copilot · Apr 27, 2026
@@ -1,9 +1,3 @@
-## 0.4.34
-
-### Minor Analysis Improvements
-
-* Removed false positive injection sink models for the `context` input of `docker/build-push-action` and the `allowed-endpoints` input of `step-security/harden-runner`.
-
 ## 0.4.33
 
 No user-facing changes.

@@ -1,5 +1,4 @@
-## 0.4.34
-
-### Minor Analysis Improvements
-
+---
+category: minorAnalysis
+---
 * Removed false positive injection sink models for the `context` input of `docker/build-push-action` and the `allowed-endpoints` input of `step-security/harden-runner`.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.34
+lastReleaseVersion: 0.4.33
@@ -1,5 +1,5 @@
 name: codeql/actions-all
-version: 0.4.34
+version: 0.4.34-dev
 library: true
 warnOnImplicitThis: true
 dependencies:

@@ -1,13 +1,3 @@
-## 0.6.26
-
-### Major Analysis Improvements
-
-* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also improved the wording to make it clearer that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Finally, changed the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
-
-### Minor Analysis Improvements
-
-* The query `actions/missing-workflow-permissions` no longer produces false positive results on reusable workflows where all callers set permissions.
-
 ## 0.6.25
 
 No user-facing changes.
@@ -173,7 +163,7 @@ No user-facing changes.
   * `actions/if-expression-always-true/critical`
   * `actions/if-expression-always-true/high`
   * `actions/unnecessary-use-of-advanced-config`
-
+  
-  
-  
 * The following query has been moved from the `code-scanning` suite to the `security-extended`
   suite. Any existing alerts for this query will be closed automatically unless the analysis is
   configured to use the `security-extended` suite.

@@ -0,0 +1,4 @@
+---
+category: majorAnalysis
+---
+* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also clarify the wording to make it clear that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Also change the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
-* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also clarify the wording to make it clear that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Also change the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
+* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also clarified the wording to make it clear that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Also changed the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
-* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also clarify the wording to make it clear that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Also change the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
+* Fixed alert messages in `actions/artifact-poisoning/critical` and `actions/artifact-poisoning/medium` as they previously included a redundant placeholder in the alert message that would on occasion contain a long block of yml that makes the alert difficult to understand. Also clarified the wording to make it clear that it is not the artifact that is being poisoned, but instead a potentially untrusted artifact that is consumed. Also changed the alert location to be the source, to align more with other queries reporting an artifact (e.g. zipslip) which is more useful.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The query `actions/missing-workflow-permissions` no longer produces false positive results on reusable workflows where all callers set permissions.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.26
+lastReleaseVersion: 0.6.25
@@ -1,5 +1,5 @@
 name: codeql/actions-queries
-version: 0.6.26
+version: 0.6.26-dev
 library: false
 warnOnImplicitThis: true
 groups: [actions, queries]

@@ -1,14 +1,3 @@
-## 10.0.0
-
-### Breaking Changes
-
-* The deprecated `NonThrowingFunction` class has been removed, use `NonCppThrowingFunction` instead.
-* The deprecated `ThrowingFunction` class has been removed, use `AlwaysSehThrowingFunction` instead.
-
-### New Features
-
-* Added a subclass `AutoconfConfigureTestFile` of `ConfigurationTestFile` that represents files created by GNU autoconf configure scripts to test the build configuration.
-
 ## 9.0.0
 
 ### Breaking Changes

@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* Added a subclass `AutoconfConfigureTestFile` of `ConfigurationTestFile` that represents files created by GNU autoconf configure scripts to test the build configuration.
@@ -0,0 +1,5 @@
+---
+category: breaking
+---
+* The deprecated `NonThrowingFunction` class has been removed, use `NonCppThrowingFunction` instead.
+* The deprecated `ThrowingFunction` class has been removed, use `AlwaysSehThrowingFunction` instead.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 10.0.0
+lastReleaseVersion: 9.0.0
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 10.0.0
+version: 9.0.1-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp

@@ -1,14 +1,3 @@
-## 1.6.1
-
-### Minor Analysis Improvements
-
-* Added `AllocationFunction` models for `aligned_alloc`, `std::aligned_alloc`, and `bsl::aligned_alloc`.
-* The "Comparison of narrow type with wide type in loop condition" (`cpp/comparison-with-wider-type`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
-* The "Multiplication result converted to larger type" (`cpp/integer-multiplication-cast-to-long`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
-* The "Suspicious add with sizeof" (`cpp/suspicious-add-sizeof`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
-* The "Wrong type of arguments to formatting function" (`cpp/wrong-type-format-argument`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
-* The "Implicit function declaration" (`cpp/implicit-function-declaration`) query has been upgraded to `high` precision. However, for `build mode: none` databases, it no longer produces any results. The results in this mode were found to be very noisy and fundamentally imprecise.
-
 ## 1.6.0
 
 ### Query Metadata Changes
@@ -366,7 +355,7 @@ No user-facing changes.
 ### Minor Analysis Improvements
 
 * The "non-constant format string" query (`cpp/non-constant-format`) has been updated to produce fewer false positives.
-* Added dataflow models for the `gettext` function variants.
+* Added dataflow models for the `gettext` function variants. 
-* Added dataflow models for the `gettext` function variants. 
+* Added dataflow models for the `gettext` function variants.
-* Added dataflow models for the `gettext` function variants. 
+* Added dataflow models for the `gettext` function variants.
 
 ## 0.9.4
 

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Implicit function declaration" (`cpp/implicit-function-declaration`) query no longer produces results on `build mode: none` databases. These results were found to be very noisy and fundamentally imprecise in this mode.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Comparison of narrow type with wide type in loop condition" (`cpp/comparison-with-wider-type`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Implicit function declaration" (`cpp/implicit-function-declaration`) query has been upgraded to `high` precision.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Multiplication result converted to larger type" (`cpp/integer-multiplication-cast-to-long`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Suspicious add with sizeof" (`cpp/suspicious-add-sizeof`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Wrong type of arguments to formatting function" (`cpp/wrong-type-format-argument`) query has been upgraded to `high` precision. This query will now run in the default code scanning suite.
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added `AllocationFunction` models for `aligned_alloc`, `std::aligned_alloc`, and `bsl::aligned_alloc`.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.6.1
+lastReleaseVersion: 1.6.0
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.6.1
+version: 1.6.1-dev
 groups:
   - cpp
   - queries

@@ -1,7 +1,3 @@
-## 1.7.65
-
-No user-facing changes.
-
 ## 1.7.64
 
 No user-facing changes.

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.65
+lastReleaseVersion: 1.7.64
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.65
+version: 1.7.65-dev
 groups:
   - csharp
   - solorigate

@@ -1,7 +1,3 @@
-## 1.7.65
-
-No user-facing changes.
-
 ## 1.7.64
 
 No user-facing changes.

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.65
+lastReleaseVersion: 1.7.64
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.65
+version: 1.7.65-dev
 groups:
   - csharp
   - solorigate

@@ -1,9 +1,3 @@
-## 5.5.0
-
-### Deprecated APIs
-
-* The predicates `get[L|R]Value` in the class `Assignment` have been deprecated. Use `get[Left|Right]Operand` instead.
-
 ## 5.4.12
 
 ### Minor Analysis Improvements

@@ -1,5 +1,4 @@
-## 5.5.0
-
-### Deprecated APIs
-
+---
+category: deprecated
+---
 * The predicates `get[L|R]Value` in the class `Assignment` have been deprecated. Use `get[Left|Right]Operand` instead.
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 5.5.0
+lastReleaseVersion: 5.4.12
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 5.5.0
+version: 5.4.13-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp

@@ -1,12 +1,3 @@
-## 1.7.1
-
-### Minor Analysis Improvements
-
-* The query `cs/useless-tostring-call` has been updated to avoid false
-  positive results in calls to `StringBuilder.AppendLine` and calls of
-  the form `base.ToString()`. Moreover, the alert message has been
-  made more precise.
-
 ## 1.7.0
 
 ### Query Metadata Changes

@@ -1,7 +1,6 @@
-## 1.7.1
-
-### Minor Analysis Improvements
-
+---
+category: minorAnalysis
+---
 * The query `cs/useless-tostring-call` has been updated to avoid false
   positive results in calls to `StringBuilder.AppendLine` and calls of
   the form `base.ToString()`. Moreover, the alert message has been

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.1
+lastReleaseVersion: 1.7.0
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.7.1
+version: 1.7.1-dev
 groups:
   - csharp
   - queries

@@ -1,7 +1,3 @@
-## 1.0.48
-
-No user-facing changes.
-
 ## 1.0.47
 
 No user-facing changes.

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.48
+lastReleaseVersion: 1.0.47
@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.48
+version: 1.0.48-dev
 groups:
   - go
   - queries

@@ -1,7 +1,3 @@
-## 7.0.6
-
-No user-facing changes.
-
 ## 7.0.5
 
 No user-facing changes.

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 7.0.6
+lastReleaseVersion: 7.0.5
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 7.0.6
+version: 7.0.6-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go

@@ -1,7 +1,3 @@
-## 1.6.1
-
-No user-facing changes.
-
 ## 1.6.0
 
 ### Query Metadata Changes

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.6.1
+lastReleaseVersion: 1.6.0
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 1.6.1
+version: 1.6.1-dev
 groups:
   - go
   - queries