From 9b1a10a782d591c6f98714164cc8d3833926f85a Mon Sep 17 00:00:00 2001
From: Kylie Stradley <4666485+KyFaSt@users.noreply.github.com>
Date: Fri, 28 Feb 2025 21:42:34 +0000
Subject: [PATCH] add change-notes

---
 actions/ql/src/change-notes/released/0.6.0.md | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 actions/ql/src/change-notes/released/0.6.0.md

diff --git a/actions/ql/src/change-notes/released/0.6.0.md b/actions/ql/src/change-notes/released/0.6.0.md
new file mode 100644
index 000000000000..7973f4745def
--- /dev/null
+++ b/actions/ql/src/change-notes/released/0.6.0.md
@@ -0,0 +1,5 @@
+## 0.6.0
+
+### Major Analysis Improvements
+
+* Moved the trigger `issueComment` in the actions/untrusted-checkout-high (CWE-829) and actions/untrusted-checkout-critical (CWE-829) queries to separate queries (actions/untrusted-checkout-issue-comment-high and actions/untrusted-checkout-issue-comment-critical) because while they are vulnerable to the same attack, they do not have the same resolution. Further work is needed to make this trigger safer to use.