github
diff --git a/‎java/change-notes/2021-05-04-jexl-injection-query.md‎
Lines changed: 2 additions & 0 deletions b/‎java/change-notes/2021-05-04-jexl-injection-query.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎…JexlExpressionEvaluationWithSandbox.java‎ ‎…JexlExpressionEvaluationWithSandbox.java‎java/ql/src/experimental/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithSandbox.java renamed to java/ql/src/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithSandbox.java b/‎…JexlExpressionEvaluationWithSandbox.java‎ ‎…JexlExpressionEvaluationWithSandbox.java‎java/ql/src/experimental/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithSandbox.java renamed to java/ql/src/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithSandbox.java
diff --git a/‎…ssionEvaluationWithUberspectSandbox.java‎ ‎…ssionEvaluationWithUberspectSandbox.java‎java/ql/src/experimental/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithUberspectSandbox.java renamed to java/ql/src/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithUberspectSandbox.java b/‎…ssionEvaluationWithUberspectSandbox.java‎ ‎…ssionEvaluationWithUberspectSandbox.java‎java/ql/src/experimental/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithUberspectSandbox.java renamed to java/ql/src/Security/CWE/CWE-094/SaferJexlExpressionEvaluationWithUberspectSandbox.java
diff --git a/‎…-094/UnsafeJexlExpressionEvaluation.java‎ ‎…-094/UnsafeJexlExpressionEvaluation.java‎java/ql/src/experimental/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java renamed to java/ql/src/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java b/‎…-094/UnsafeJexlExpressionEvaluation.java‎ ‎…-094/UnsafeJexlExpressionEvaluation.java‎java/ql/src/experimental/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java renamed to java/ql/src/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java
diff --git a/‎java/ql/src/semmle/code/java/security/JexlInjection.qll‎
Lines changed: 2 additions & 0 deletions b/‎java/ql/src/semmle/code/java/security/JexlInjection.qll‎
Lines changed: 2 additions & 0 deletions
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* The query "Expression language injection (JEXL)" (`java/jexl-expression-injection`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @artem-smotrakov](https://github.com/github/codeql/pull/4965)
@@ -1,3 +1,5 @@
+/** Provides classes to reason about Expression Langauge (JEXL) injection vulnerabilities. */
+
 import java
 import semmle.code.java.dataflow.TaintTracking
 private import semmle.code.java.dataflow.ExternalFlow
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+lgtm,codescanning`
	`2`	+* The query "Expression language injection (JEXL)" (`java/jexl-expression-injection`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @artem-smotrakov](https://github.com/github/codeql/pull/4965)
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,5 @@`
	`1`	`+/** Provides classes to reason about Expression Langauge (JEXL) injection vulnerabilities. */`
	`2`	`+`
`1`	`3`	`import java`
`2`	`4`	`import semmle.code.java.dataflow.TaintTracking`
`3`	`5`	`private import semmle.code.java.dataflow.ExternalFlow`