Java: Add change note for #3938

aschackmull · aschackmull · commit 4677eb649ea4 · 2020-10-29T16:02:34.000+01:00
diff --git a/java/change-notes/2020-07-09-untrusted-data-to-external-api.md b/java/change-notes/2020-07-09-untrusted-data-to-external-api.md
@@ -0,0 +1,9 @@
+lgtm,codescanning
+* Two new queries, "Untrusted data passed to external API" (`java/untrusted-data-to-external-api`)
+  and "Frequency counts for external APIs that are used with untrusted data"
+  (`java/count-untrusted-data-external-api`), have been added. These queries
+  should not be run by default as they are designed to have a low "true
+  positive" rate. However, they allow you to review the use of untrusted data
+  in an application to find new security vulnerabilities that are not found by
+  the default security queries, as well as identifying opportunities to improve
+  or add modeling of taint steps and sinks.
