Lower precision for a number of queries.

These queries are currently run by default, but don't have their results displayed. Looking through results on LGTM.com, they are either false positives (e.g., `BitwiseSignCheck` which flags many perfectly harmless operations and `CompareIdenticalValues` which mostly flags NaN checks) or harmless results that developers are unlikely to care about (e.g., `EmptyArrayInit` or `MisspelledIdentifier`). With this PR, the only queries that are still run but not displayed are security queries, where different considerations may apply.
2020-05-19 11:52:53 +01:00 · 2020-05-19 11:52:53 +01:00 · a803120414
--- a/change-notes/1.25/analysis-javascript.md
+++ b/change-notes/1.25/analysis-javascript.md
@ -23,6 +23,29 @@
 | Expression has no effect (`js/useless-expression`) | Less results | This query no longer flags an expression when that expression is the only content of the containing file. |
 | Unknown directive (`js/unknown-directive`) | Less results | This query no longer flags directives generated by the Babel compiler. |

+The following low-precision queries are no longer run by default on LGTM (their results already were not displayed):
+
+  - `js/angular/dead-event-listener`
+  - `js/angular/unused-dependency`
+  - `js/conflicting-html-attribute`
+  - `js/useless-assignment-to-global`
+  - `js/too-many-parameters`
+  - `js/unused-property`
+  - `js/bitwise-sign-check`
+  - `js/comparison-of-identical-expressions`
+  - `js/misspelled-identifier`
+  - `js/jsdoc/malformed-param-tag`
+  - `js/jsdoc/unknown-parameter`
+  - `js/jsdoc/missing-parameter`
+  - `js/omitted-array-element`
+  - `js/ignored-setter-parameter`
+  - `js/json-in-javascript-file`
+  - `js/node/cyclic-import`
+  - `js/node/unused-npm-dependency`
+  - `js/single-run-loop`
+  - `js/nested-loops-with-same-variable`
+  - `js/return-outside-function`
+
 ## Changes to libraries

 * Added data flow for `Map` and `Set`, and added matching type-tracking steps that can accessed using the `CollectionsTypeTracking` module.
--- a/javascript/ql/src/AngularJS/DeadAngularJSEventListener.ql
+++ b/javascript/ql/src/AngularJS/DeadAngularJSEventListener.ql
@ -3,7 +3,7 @@
 * @description An AngularJS event listener that listens for a non-existent event has no effect.
 * @kind problem
 * @problem.severity warning
- * @precision medium
+ * @precision low
 * @id js/angular/dead-event-listener
 * @tags correctness
 *       frameworks/angularjs
--- a/javascript/ql/src/AngularJS/UnusedAngularDependency.ql
+++ b/javascript/ql/src/AngularJS/UnusedAngularDependency.ql
@ -3,7 +3,7 @@
 * @description Unused dependencies are confusing, and should be removed.
 * @kind problem
 * @problem.severity recommendation
- * @precision high
+ * @precision low
 * @id js/angular/unused-dependency
 * @tags maintainability
 *       frameworks/angularjs
--- a/javascript/ql/src/DOM/ConflictingAttributes.ql
+++ b/javascript/ql/src/DOM/ConflictingAttributes.ql
@ -8,7 +8,7 @@
 * @tags maintainability
 *       correctness
 *       external/cwe/cwe-758
- * @precision medium
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Declarations/DeadStoreOfGlobal.ql
+++ b/javascript/ql/src/Declarations/DeadStoreOfGlobal.ql
@ -7,7 +7,7 @@
 * @tags maintainability
 *       correctness
 *       external/cwe/cwe-563
- * @precision medium
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Declarations/TooManyParameters.ql
+++ b/javascript/ql/src/Declarations/TooManyParameters.ql
@ -6,7 +6,7 @@
 * @id js/too-many-parameters
 * @tags testability
 *       readability
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Declarations/UnusedProperty.ql
+++ b/javascript/ql/src/Declarations/UnusedProperty.ql
@ -5,7 +5,7 @@
 * @problem.severity recommendation
 * @id js/unused-property
 * @tags maintainability
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Expressions/BitwiseSignCheck.ql
+++ b/javascript/ql/src/Expressions/BitwiseSignCheck.ql
@ -6,7 +6,7 @@
 * @id js/bitwise-sign-check
 * @tags reliability
 *       correctness
- * @precision medium
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Expressions/CompareIdenticalValues.ql
+++ b/javascript/ql/src/Expressions/CompareIdenticalValues.ql
@ -11,7 +11,7 @@
 *       convention
 *       external/cwe/cwe-570
 *       external/cwe/cwe-571
- * @precision medium
+ * @precision low
 */

 import Clones
--- a/javascript/ql/src/Expressions/MisspelledIdentifier.ql
+++ b/javascript/ql/src/Expressions/MisspelledIdentifier.ql
@ -6,7 +6,7 @@
 * @id js/misspelled-identifier
 * @tags maintainability
 *       readability
- * @precision high
+ * @precision low
 */

 import Misspelling
--- a/javascript/ql/src/JSDoc/BadParamTag.ql
+++ b/javascript/ql/src/JSDoc/BadParamTag.ql
@ -9,7 +9,7 @@
 * @tags maintainability
 *       readability
 *       documentation
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/JSDoc/JSDocForNonExistentParameter.ql
+++ b/javascript/ql/src/JSDoc/JSDocForNonExistentParameter.ql
@ -8,7 +8,7 @@
 * @tags maintainability
 *       readability
 *       documentation
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/JSDoc/UndocumentedParameter.ql
+++ b/javascript/ql/src/JSDoc/UndocumentedParameter.ql
@ -8,7 +8,7 @@
 * @tags maintainability
 *       readability
 *       documentation
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/LanguageFeatures/EmptyArrayInit.ql
+++ b/javascript/ql/src/LanguageFeatures/EmptyArrayInit.ql
@ -7,7 +7,7 @@
 * @tags maintainability
 *       readability
 *       language-features
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/LanguageFeatures/SetterIgnoresParameter.ql
+++ b/javascript/ql/src/LanguageFeatures/SetterIgnoresParameter.ql
@ -8,7 +8,7 @@
 * @tags reliability
 *       maintainability
 *       language-features
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/LanguageFeatures/WrongExtensionJSON.ql
+++ b/javascript/ql/src/LanguageFeatures/WrongExtensionJSON.ql
@ -6,7 +6,7 @@
 * @id js/json-in-javascript-file
 * @tags maintainability
 *       language-features
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/NodeJS/CyclicImport.ql
+++ b/javascript/ql/src/NodeJS/CyclicImport.ql
@ -8,7 +8,7 @@
 * @tags reliability
 *       maintainability
 *       frameworks/node.js
- * @precision medium
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/NodeJS/UnusedDependency.ql
+++ b/javascript/ql/src/NodeJS/UnusedDependency.ql
@ -3,7 +3,7 @@
 * @description If unnecessary package dependencies are included in package.json, the
 *              package will become harder to install.
 * @kind problem
- * @problem.severity warning
+ * @problem.severity recommendation
 * @id js/node/unused-npm-dependency
 * @tags maintainability
 *       frameworks/node.js
--- a/javascript/ql/src/Statements/EphemeralLoop.ql
+++ b/javascript/ql/src/Statements/EphemeralLoop.ql
@ -6,7 +6,7 @@
 * @problem.severity recommendation
 * @id js/single-run-loop
 * @tags readability
- * @precision high
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Statements/NestedLoopsSameVariable.ql
+++ b/javascript/ql/src/Statements/NestedLoopsSameVariable.ql
@ -7,7 +7,7 @@
 * @id js/nested-loops-with-same-variable
 * @tags maintainability
 *       correctness
- * @precision medium
+ * @precision low
 */

 import javascript
--- a/javascript/ql/src/Statements/ReturnOutsideFunction.ql
+++ b/javascript/ql/src/Statements/ReturnOutsideFunction.ql
@ -7,7 +7,7 @@
 * @id js/return-outside-function
 * @tags reliability
 *       correctness
- * @precision medium
+ * @precision low
 */

 import javascript