bashonly
b337d2989c
[cleanup] Misc ( #10383 )
...
Authored by: bashonly
2024-07-07 21:23:40 +00:00
bashonly
93d33cb29a
[cleanup] Misc ( #10330 )
...
Authored by: bashonly
2024-07-02 23:03:08 +00:00
Simon Sawicki
5ce582448e
[core] Disallow unsafe extensions (CVE-2024-38519)
...
Ref: https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-79w7-vh3h-8g4j
Authored by: Grub4K
2024-07-02 00:58:40 +02:00
bashonly
6aaf96a3d6
[cleanup] Misc ( #10075 )
...
Closes #10303
Authored by: bashonly, seproDev, jucor, c-basalt
Co-authored-by: sepro <4618135+seproDev@users.noreply.github.com>
Co-authored-by: Julien Cornebise <julien@cornebise.com>
Co-authored-by: c-basalt <117849907+c-basalt@users.noreply.github.com>
2024-07-01 22:51:27 +00:00
bashonly
ae2af1104f
[cleanup] Misc
...
Authored by: bashonly, seproDev, Grub4K
2024-05-26 16:52:42 -05:00
Simon Sawicki
5c019f6328
[misc] Cleanup ( #9765 )
...
Closes #9763
Authored by: bashonly, seproDev, Grub4K
Co-authored-by: bashonly <88596187+bashonly@users.noreply.github.com>
Co-authored-by: sepro <4618135+seproDev@users.noreply.github.com>
2024-05-26 21:37:49 +00:00
Simon Sawicki
ff07792676
[core] Prevent RCE when using --exec
with %q
(CVE-2024-22423)
...
The shell escape function now properly escapes `%`, `\\` and `\n`. `utils.Popen` as well as `%q` output template expansion have been patched accordingly.
Prior to this fix using `--exec` together with `%q` when on Windows could cause remote code to execute. See https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-hjq6-52gw-2g7p for more details.
Authored by: Grub4K
2024-04-09 18:36:13 +02:00
bashonly
216f6a3cb5
[cleanup] Misc ( #9426 )
...
Authored by: bashonly, pukkandan
2024-04-09 16:12:26 +00:00
sepro
86e3b82261
[core] Fix filesize_approx
calculation ( #9560 )
...
Reverts 22e4dfacb6
Despite being documented as `Kbit/s`, the extractors/manifests were returning bitrates in SI units of kilobits/sec.
Authored by: seproDev, pukkandan
2024-04-01 04:47:24 +05:30
pukkandan
615a84447e
[cleanup] Misc ( #8968 )
...
Authored by: pukkandan, bashonly, seproDev
2024-03-11 00:52:28 +05:30
Simon Sawicki
f9fb3ce86e
[cleanup] Misc ( #8598 )
...
Authored by: bashonly, pukkandan, seproDev, Grub4K
Co-authored-by: bashonly <bashonly@protonmail.com>
Co-authored-by: pukkandan <pukkandan.ytdlp@gmail.com>
Co-authored-by: sepro <4618135+seproDev@users.noreply.github.com>
2023-12-30 22:27:36 +01:00
bashonly
a9d3f4b20a
[cleanup] Fix changelog typo
...
Authored by: bashonly
2023-11-14 15:58:49 -06:00
Simon Sawicki
b012271d01
[cleanup] Misc ( #8510 )
...
Authored by: bashonly, coletdjnz, dirkf, gamer191, seproDev, Grub4K
2023-11-14 22:40:38 +01:00
Simon Sawicki
de015e9307
[core] Prevent RCE when using --exec
with %q
(CVE-2023-40581)
...
The shell escape function is now using `""` instead of `\"`. `utils.Popen` has been patched to properly quote commands.
Prior to this fix using `--exec` together with `%q` when on Windows could cause remote code to execute. See https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-42h4-v29r-42qg for reference.
Authored by: Grub4K
2023-09-24 02:29:01 +02:00
Simon Sawicki
61bdf15fc7
[core] Raise minimum recommended Python version to 3.8 ( #8183 )
...
Authored by: Grub4K
2023-09-24 02:24:47 +02:00
Simon Sawicki
30ba233d4c
[devscripts] make_changelog
: Fix changelog grouping and add networking group ( #8124 )
...
Authored by: Grub4K
2023-09-17 13:22:04 +02:00
pukkandan
62b5c94cad
[cleanup] Misc fixes
...
Closes #7528
2023-07-22 09:09:52 +05:30
pukkandan
b532a34810
[docs] Minor fixes
...
Closes #7515
2023-07-06 23:32:19 +05:30
pukkandan
812cdfa06c
[cleanup] Misc
2023-06-22 13:31:07 +05:30
pukkandan
ad54c9130e
[cleanup] Misc
...
Closes #6288 , Closes #7197 , Closes #7265 , Closes #7353 , Closes #5773
Authored by: mikf, freezboltz, pukkandan
2023-06-21 09:21:20 +05:30
pukkandan
7accdd9845
[devscripts] make_changelog
: Stop at Release ...
commit
...
Closes #6415
2023-03-04 19:26:43 +05:30
pukkandan
4815bbfc41
[cleanup] Misc
2023-03-03 23:23:33 +05:30
Simon Sawicki
d400e261cf
[devscripts] Script to generate changelog ( #6220 )
...
Authored by: Grub4K
2023-03-03 22:54:23 +05:30