Skip to content

v2.14.0

Pre-release
Pre-release
Compare
Choose a tag to compare
@github-actions github-actions released this 02 Mar 15:05
· 4 commits to rc/2.14 since this release
v2.14.0
59698aa
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Release summary

  • New queries added for the following rule packages: BitfieldTypes, Contracts6, Declarations7, Declarations8, InvalidMemory1, Pointers3
  • The following changes have been made for this release:
    • RULE-11-7 - CastBetweenPointerToObjectAndNonIntArithmeticType.ql
      • Corrected the query output message to describe a cast involving a pointer to an object rather than a void pointer.
    • A1-1-2: Refactored this test case to support better cross-compiler testing.
    • A1-1-3: Added support for alternate spelling of compiler flag.

Supported versions

  • The LGTM pack is not supported on any released version of LGTM without support from GitHub Professional Services.
  • The Code Scanning pack is supported when:
    • Using the CodeQL CLI version 2.9.4 in conjunction with a copy of the CodeQL standard library for C++ (github/codeql) set to the tag codeql-cli/v2.9.4.
    • Using the CodeQL Action or CodeQL runner with the codeql-bundle-20220615.

Appendix: MISRA-C-2012 new queries

New queries added to cover the following rules:

  • RULE-6-1 - BitFieldsShallOnlyBeDeclaredWithAnAppropriateType.ql
  • RULE-6-2 - SingleBitNamedBitFieldsOfASignedType.ql
  • RULE-8-12 - ValueImplicitEnumerationConstantNotUnique.ql
  • RULE-9-1 - ObjectWithAutoStorageDurationReadBeforeInit.ql
  • RULE-17-5 - ArrayFunctionArgumentNumberOfElements.ql
  • RULE-17-7 - ValueReturnedByAFunctionNotUsed.ql
  • RULE-18-8 - VariableLengthArrayTypesUsed.ql

Appendix: CERT-C new queries

New queries added to cover the following rules:

  • DCL30-C - AppropriateStorageDurationsStackAdressEscape.ql, AppropriateStorageDurationsFunctionReturn.ql
  • DCL39-C - InformationLeakageAcrossTrustBoundariesC.ql
  • EXP32-C - DoNotAccessVolatileObjectWithNonVolatileReference.ql
  • EXP33-C - DoNotReadUninitializedMemory.ql
  • EXP34-C - DoNotDereferenceNullPointers.ql
  • EXP36-C - DoNotCastPointerToMoreStrictlyAlignedPointerType.ql
  • EXP39-C - DoNotAccessVariableViaPointerOfIncompatibleType.ql
  • EXP40-C - DoNotModifyConstantObjects.ql
  • EXP43-C - DoNotPassAliasedPointerToRestrictQualifiedParam.ql, RestrictPointerReferencesOverlappingObject.ql
  • MEM30-C - DoNotAccessFreedMemory.ql

Supported versions

  • The LGTM pack is not supported on any released version of LGTM without support from GitHub Professional Services.
  • The Code Scanning pack is supported when:
    • Using the CodeQL CLI version 2.9.4 in conjunction with a copy of the CodeQL standard library for C++ (github/codeql) set to the tag codeql-cli/v2.9.4.
    • Using the CodeQL Action or CodeQL runner with the codeql-bundle-20220615.
Assets 7
Loading