Update change-notes for actions ai-output-validation

data-douser · data-douser · commit 2bb2b3d6a428 · 2026-04-08T21:48:59.000-06:00
diff --git a/actions/ql/lib/change-notes/2026-04-08-ai-output-validation-library.md b/actions/ql/lib/change-notes/2026-04-08-ai-output-validation-library.md
@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* Added `ImproperValidationOfAiOutputQuery.qll` library and `ai_inference_actions.model.yml` models-as-data file for detecting improper validation of AI-generated output (CWE-1426) in GitHub Actions workflows.
diff --git a/actions/ql/src/change-notes/2026-04-08-ai-output-validation-query.md b/actions/ql/src/change-notes/2026-04-08-ai-output-validation-query.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added new experimental query `actions/improper-ai-output-handling/critical` to detect improper validation of AI-generated output (CWE-1426) in GitHub Actions workflows where AI action output flows unsanitized to code execution sinks.

-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +---
 +category: feature
 +---
 +* Added `ImproperValidationOfAiOutputQuery.qll` library and `ai_inference_actions.model.yml` models-as-data file for detecting improper validation of AI-generated output (CWE-1426) in GitHub Actions workflows.