Skip to content

v2.10.0

Choose a tag to compare

View all tags
@codeql-ci codeql-ci released this 27 Jun 17:31
· 135 commits to main since this release
v2.10.0
98c20a4

The bundled extractors are updated to match the versions currently used on LGTM.com. These are newer than the last release (1.30) of LGTM Enterprise. If you plan to upload databases to an LGTM Enterprise 1.30 instance, you need to create them with release 2.7.6.

Breaking changes

  • The --format=stats option of codeql generate log-summary has been renamed to --format=overall. It now produces a richer JSON object that, in addition to the previous statistics about the run (which can be found in the stats property) also records the most expensive predicates in the evaluation run.

Potentially breaking changes

  • The codeql resolve ml-model command now requires one or more query specifications as command line arguments in order to determine the set of starting packs from which to initiate the resolution process.

  • The buildMetadata inside of compiled CodeQL packs no longer contains a creationTime property.

  • The codeql pack download command, when used with the --dir option, now downloads requested packs in directories corresponding to their version numbers.

New features

  • You can now include diagnostic messages in the summary produced by the --print-diagnostics-summary option of the codeql database interpret-results and codeql database analyze commands by running these commands at high verbosity levels.

Bugs fixed

  • Fixed a bug where codeql pack download, when used with the --dir option, would not download a pack that is in the global package cache.

  • Fixed a bug where some versions of a CodeQL package could not be downloaded if there are more than 100 versions of this package in the package registry.

  • Fixed a bug where the --also-match option for codeql resolve files and codeql database index-files does not work with relative paths.

  • Fixed a bug that caused codeql query decompile to ignore the --output option when producing bytecode output (--kind=bytecode), writing only to stdout.

For more information about the changes included in this release, see the CodeQL CLI changelog.

You can download either the codeql-PLATFORM.zip for your platform, or the generic codeql.zip which contains binaries for all supported platforms. Please ignore the additional "source code" downloads below the .zip artifacts.

(The Windows and all-platform release assets were updated on 2022-08-15 to correct missing digital signatures in the original release assets.)

Assets 6
Loading