v2.22.0

Release summary

• No new queries were added for this release
• The following changes have been made for this release:
  • FIO32-C - DoNotPerformFileOperationsOnDevices.ql:
    • The query was updated to work with the latest version of the dataflow library.
  • A5-1-3 - Only consider lambdas that have zero arguments, since any lambda with non-zero arguments will have an explicit argument list.
  • M0-1-3 - Consider constexpr variables used in template instantiations as "used".
  • A8-4-13
  • Address false positives caused by missing modelling of modifying operations for smart pointers for some standard libraries (such as libstdc++).
  • A20-8-1/MEM56-CPP
    • Address false negatives caused by lack of modelling of flow through smart pointers.
    • Reduce flow paths through standard library headers to simplify results.
  • A18-1-4
    • Address false positives caused by missing modelling of modifying operations for smart pointers for some standard libraries (such as libstdc++).
  • STR51-CPP
    • Address false negatives caused by incomplete modelling of the std::string::replace() function.
  • A15-5-1
    • Rephrase alert message for noalert(false) special functions to clarify that this permits exceptions.
    • Additional results for implicit noexcept(true) special functions highlighting that the specification should be made explicit.
  • Updated the supported CodeQL version to 2.12.7.
  • A15-2-2 - all results now include an associated exception flow path to avoid a CodeQL CLI bug in 2.12.7. This includes results where an exception is thrown directly in the constructor.

Supported versions

• The LGTM pack is not supported on any released version of LGTM without support from GitHub Professional Services.
• The Code Scanning pack is supported when:
  • Using the CodeQL CLI version 2.12.7 in conjunction with a copy of the CodeQL standard library for C++ (github/codeql) set to the tag codeql-cli/v2.12.7.
  • Using the CodeQL Action or CodeQL runner with the codeql-bundle-20230418.