v2.2.5

• The bundled extractors are updated to match the versions currently used on LGTM.com. These are newer than the last release (1.24) of LGTM Enterprise. If you plan to upload databases to an LGTM Enterprise 1.24 instance, you need to create them with release 2.1.4.

• Updated license terms with a rewritten description of what is and is not allowed. No substantive changes are intended, but the new text is hopefully easier to understand.

• CodeQL can now execute queries that use QL's external predicate feature.

• A new codeql bqrs diff command can be used to compute the difference between two binary query result sets.

• codeql test run has some new options to improve support for testing of extractors.

For more information about the changes included in this release, see the CodeQL CLI changelog.

You can download either the codeql-PLATFORM.zip for your platform, or the generic codeql.zip which contains binaries for all supported platforms. Please ignore the additional "source code" downloads below the .zip artifacts.

v2.2.4

The bundled extractors are updated to match the versions currently used on LGTM.com. These are newer than the last release (1.24) of LGTM Enterprise. If you plan to upload databases to an LGTM Enterprise 1.24 instance, you need to create them with release 2.1.4.

Bug fixed: QL packs found through the --search-path option, or in a sibling directory to the unpacked CLI would erroneously take precedence over the content of the workspace when using the CodeQL extension for Visual Studio Code. This is now fixed such that the workspace takes priority.

For more information about the changes included in this release, see the CodeQL CLI changelog.

You can download either the codeql-PLATFORM.zip for your platform, or the generic codeql.zip which contains binaries for all supported platforms. Please ignore the additional "source code" downloads below the .zip artifacts.

v2.2.3

This is just the same as verison 2.2.2, but re-released with a new version number because the v2.2.2 release as published originally contained the 2.2.0 binaries instead of the correct 2.2.2 ones.

If you have downloaded version 2.2.2, and codeql --version correctly identifies itself as being that version, you don't need to upgrade to 2.2.3.

v2.2.2

The bundled extractors are updated to match the versions currently used on LGTM.com. These are newer than the last release (1.24) of LGTM Enterprise. If you plan to upload databases to an LGTM Enterprise 1.24 instance, you need to create them with release 2.1.4.

Query evaluations that time out due to a --timeout option are no longer silently discarded. Instead codeql will terminate with exit code 33. Commands that evaluate multiple queries will produce as much output as they can even if one of the queries times out.

For more information about the changes included in this release, see the CodeQL CLI changelog.

You can download either the codeql-PLATFORM.zip for your platform, or the generic codeql.zip which contains binaries for all supported platforms. Please ignore the additional "source code" downloads below the .zip artifacts.

Note: For several days after the release, this download page erroneously contained the zips for 2.2.0 instead of 2.2.2. They have now (2020-06-15) been corrected.

v2.2.1

This it actually release 2.2.0 but a dummy release that contains just the codeql.zip download and not the new platform-specific ones. This is necessary for existing versions of the Visual Studio Code extension, which get confused by seeing a "latest" release that has more than one binary asset.

If you're not the Visual Studio Code extension, please ignore this release.

v2.2.0

Introduces support for a new QL language feature, union types, which will start being used at https://github.com/github/codeql over the coming weeks and months.

Starting with this release, the CodeQL CLI can be downloaded either as a single codeql.zip file containing the CLI for all supported platforms, or as a codeql-PLATFORM.zip that contains the files for just one platform. The single-platform zips are faster to download, but otherwise provide equivalent functionality.

For more information about the changes included in this release, see the CodeQL CLI changelog.

Please ignore the additional "source code" downloads below the .zip artifacts.

v2.1.4

This release corresponds to release 1.24.x of LGTM Enterprise, and should be used when creating databases that will be uploaded to it.
Future CLI releases (numbered 2.2.x) may produce databases that are not backwards compatible with this version of LGTM Enterprise.

For all puposes other than creating databases for LGTM Enterprise we recommend that you continue upgrading to 2.2.x CLI releases as they become available. In fact, you might want to skip this one; a 2.2.0 release that tracks LGTM.com instead should arrive later this week.

• A new codeql query format command exposes the QL autoformatter for use on the command line.

• -J command-line options that contain spaces now ought to work on Windows. They still do not work reliably on Linux or MacOS, though.

For more information about the changes included in this release, see the CodeQL CLI changelog.

Please ignore the additional "source code" downloads below the codeql.zip artifact.

v2.1.3

• Fixes a bug in codeql execute cli-server (a helper used by the VS Code extension) which would sometimes cause query compilation to fail until the extension was restarted.

• Fixes a bug in codeql database upgrade which could lead to performance losses if the upgraded database was subsequently used with LGTM or the legacy Semmle Core product.

• Fixes a bug in the QL evaluator that would sometimes lead to crashes for queries that use the new unique aggregate added in release 2.1.0.

• The value of the --compilation-cache-size option is now correctly interpreted as a number of megabytes rather than a number of bytes.

This release still should not be used if you plan to create databases for upload to LGTM Enterprise.

For more information about the changes included in this release, see the CodeQL CLI changelog.

Please ignore the additional "source code" downloads below the codeql.zip artifact.

v2.1.2

Potentially breaking change: In query suite definitions, filter instructions that filter on the query path pseudo-tag will now always see the relative path to the query expressed with / as a directory separator, independently on the platform. Previously they erroneously used the platform's directory separator, meaning that query suites developed on Windows would not work correctly on Unix systems (and vice versa) if they used query path. Existing suite definitions developed on Windows may need to be updated to match the new behavior.

Updated license terms to allow CI use with GitHub Actions for open-source software.

This release still should not be used if you plan to create databases for upload to LGTM Enterprise.

For more information about the changes included in this release, see the CodeQL CLI changelog.

Please ignore the additional "source code" downloads below the codeql.zip artifact.

v2.1.1

Version 2.1.1 of the CodeQL CLI.

This release updates the bundled extractors to match the versions currently used on LGTM.com. It also introduces a few new features which will not be relevant for most users. For more information, see the CodeQL CLI changelog.

This release still should not be used if you plan to create databases for upload to LGTM Enterprise.

Please ignore the additional "source code" downloads below the codeql.zip artifact.