0.7.0

Deprecated APIs

• The Configuration taint flow configuration class from codeql.ruby.security.InsecureDownloadQuery has been deprecated. Use the Flow module instead.

Minor Analysis Improvements

• More kinds of rack applications are now recognized.
• Rack::Response instances are now recognized as potential responses from rack applications.
• HTTP redirect responses from Rack applications are now recognized as a potential sink for open redirect alerts.
• Additional sinks for rb/unsafe-deserialization have been added. This includes various methods from the yaml and plist gems, which deserialize YAML and Property List data, respectively.