Release summary
- New queries added for the following rule packages: Declarations1, Lifetime, Preconditions3, SideEffects6
- The following changes have been made for this release:
A8-5-0,EXP53-CPP,EXP33-C,RULE-9-1-MemoryNotInitializedBeforeItIsRead.ql,DoNotReadUninitializedMemory.ql,DoNotReadUninitializedMemory.ql,ObjectWithAutoStorageDurationReadBeforeInit.ql:- The queries listed now find uses of the operator 'new' where there is no value initialization provided. The queries listed now also uses an out of the box library to consider initialization within another function as valid initialization (
InitializationFunctions.qll). We do not yet track finely track the initialization/use ofpvs*p.
- The queries listed now find uses of the operator 'new' where there is no value initialization provided. The queries listed now also uses an out of the box library to consider initialization within another function as valid initialization (
Supported versions
- The LGTM pack is not supported on any released version of LGTM without support from GitHub Professional Services.
- The Code Scanning pack is supported when:
- Using the CodeQL CLI version
2.21.4in conjunction with a copy of the CodeQL standard library for C++ (github/codeql) set to the tagcodeql-cli/v2.21.4. - Using the CodeQL Action or CodeQL runner with the codeql-bundle-v2.21.4.
- Using the CodeQL CLI version
Appendix: MISRA-C++-2023 new queries
New queries added to cover the following rules:
- RULE-6-8-3 -
AutomaticStorageAssignedToObjectGreaterLifetime.ql - RULE-11-6-2 -
ValueOfAnObjectMustNotBeReadBeforeItHasBeenSet.ql - RULE-13-3-3 -
DeclarationsOfAFunctionSameParameterName.ql - RULE-22-3-1 -
AssertMacroUsedWithAConstantExpression.ql - RULE-28-3-1 -
PredicateWithPersistentSideEffects.ql,NonConstPredicateFunctionObject.ql