devscripts/changelog_override.json

   1 [
   2     {
   3         "action": "add",
   4         "when": "29cb20bd563c02671b31dd840139e93dd37150a1",
   5         "short": "[priority] **A new release type has been added!**\n    * [`nightly`](https://github.com/yt-dlp/yt-dlp/releases/tag/nightly) builds will be made after each push, containing the latest fixes (but also possibly bugs).\n    * When using `--update`/`-U`, a release binary will only update to its current channel (either `stable` or `nightly`).\n    * The `--update-to` option has been added allowing the user more control over program upgrades (or downgrades).\n    * `--update-to` can change the release channel (`stable`, `nightly`) and also upgrade or downgrade to specific tags.\n    * **Usage**: `--update-to CHANNEL`, `--update-to TAG`, `--update-to CHANNEL@TAG`"
   6     },
   7     {
   8         "action": "add",
   9         "when": "5038f6d713303e0967d002216e7a88652401c22a",
  10         "short": "[priority] **YouTube throttling fixes!**"
  11     },
  12     {
  13         "action": "remove",
  14         "when": "2e023649ea4e11151545a34dc1360c114981a236"
  15     },
  16     {
  17         "action": "add",
  18         "when": "01aba2519a0884ef17d5f85608dbd2a455577147",
  19         "short": "[priority] YouTube: Improved throttling and signature fixes"
  20     },
  21     {
  22         "action": "change",
  23         "when": "c86e433c35fe5da6cb29f3539eef97497f84ed38",
  24         "short": "[extractor/niconico:series] Fix extraction (#6898)",
  25         "authors": ["sqrtNOT"]
  26     },
  27     {
  28         "action": "change",
  29         "when": "69a40e4a7f6caa5662527ebd2f3c4e8aa02857a2",
  30         "short": "[extractor/youtube:music_search_url] Extract title (#7102)",
  31         "authors": ["kangalio"]
  32     },
  33     {
  34         "action": "change",
  35         "when": "8417f26b8a819cd7ffcd4e000ca3e45033e670fb",
  36         "short": "Add option `--color` (#6904)",
  37         "authors": ["Grub4K"]
  38     },
  39     {
  40         "action": "change",
  41         "when": "b4e0d75848e9447cee2cd3646ce54d4744a7ff56",
  42         "short": "Improve `--download-sections`\n    - Support negative time-ranges\n    - Add `*from-url` to obey time-ranges in URL",
  43         "authors": ["pukkandan"]
  44     },
  45     {
  46         "action": "change",
  47         "when": "1e75d97db21152acc764b30a688e516f04b8a142",
  48         "short": "[extractor/youtube] Add `ios` to default clients used\n        - IOS is affected neither by 403 nor by nsig so helps mitigate them preemptively\n        - IOS also has higher bit-rate 'premium' formats though they are not labeled as such",
  49         "authors": ["pukkandan"]
  50     },
  51     {
  52         "action": "change",
  53         "when": "f2ff0f6f1914b82d4a51681a72cc0828115dcb4a",
  54         "short": "[extractor/motherless] Add gallery support, fix groups (#7211)",
  55         "authors": ["rexlambert22", "Ti4eeT4e"]
  56     },
  57     {
  58         "action": "change",
  59         "when": "a4486bfc1dc7057efca9dd3fe70d7fa25c56f700",
  60         "short": "[misc] Revert \"Add automatic duplicate issue detection\"",
  61         "authors": ["pukkandan"]
  62     },
  63     {
  64         "action": "add",
  65         "when": "1ceb657bdd254ad961489e5060f2ccc7d556b729",
  66         "short": "[priority] Security: [[CVE-2023-35934](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35934)] Fix [Cookie leak](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-v8mc-9377-rwjj)\n    - `--add-header Cookie:` is deprecated and auto-scoped to input URL domains\n    - Cookies are scoped when passed to external downloaders\n    - Add `cookies` field to info.json and deprecate `http_headers.Cookie`"
  67     },
  68     {
  69         "action": "change",
  70         "when": "b03fa7834579a01cc5fba48c0e73488a16683d48",
  71         "short": "[ie/twitter] Revert 92315c03774cfabb3a921884326beb4b981f786b",
  72         "authors": ["pukkandan"]
  73     },
  74     {
  75         "action": "change",
  76         "when": "fcd6a76adc49d5cd8783985c7ce35384b72e545f",
  77         "short": "[test] Add tests for socks proxies (#7908)",
  78         "authors": ["coletdjnz"]
  79     },
  80     {
  81         "action": "change",
  82         "when": "4bf912282a34b58b6b35d8f7e6be535770c89c76",
  83         "short": "[rh:urllib] Remove dot segments during URL normalization (#7662)",
  84         "authors": ["coletdjnz"]
  85     },
  86     {
  87         "action": "change",
  88         "when": "59e92b1f1833440bb2190f847eb735cf0f90bc85",
  89         "short": "[rh:urllib] Simplify gzip decoding (#7611)",
  90         "authors": ["Grub4K"]
  91     },
  92     {
  93         "action": "add",
  94         "when": "c1d71d0d9f41db5e4306c86af232f5f6220a130b",
  95         "short": "[priority] **The minimum *recommended* Python version has been raised to 3.8**\nSince Python 3.7 has reached end-of-life, support for it will be dropped soon. [Read more](https://github.com/yt-dlp/yt-dlp/issues/7803)"
  96     },
  97     {
  98         "action": "add",
  99         "when": "61bdf15fc7400601c3da1aa7a43917310a5bf391",
 100         "short": "[priority] Security: [[CVE-2023-40581](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40581)] [Prevent RCE when using `--exec` with `%q` on Windows](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-42h4-v29r-42qg)\n    - The shell escape function is now using `\"\"` instead of `\\\"`.\n    - `utils.Popen` has been patched to properly quote commands."
 101     },
 102     {
 103         "action": "change",
 104         "when": "8a8b54523addf46dfd50ef599761a81bc22362e6",
 105         "short": "[rh:requests] Add handler for `requests` HTTP library (#3668)\n\n\tAdds support for HTTPS proxies and persistent connections (keep-alive)",
 106         "authors": ["bashonly", "coletdjnz", "Grub4K"]
 107     },
 108     {
 109         "action": "add",
 110         "when": "1d03633c5a1621b9f3a756f0a4f9dc61fab3aeaa",
 111         "short": "[priority] **The release channels have been adjusted!**\n\t* [`master`](https://github.com/yt-dlp/yt-dlp-master-builds) builds are made after each push, containing the latest fixes (but also possibly bugs). This was previously the `nightly` channel.\n\t* [`nightly`](https://github.com/yt-dlp/yt-dlp-nightly-builds) builds are now made once a day, if there were any changes."
 112     },
 113     {
 114         "action": "add",
 115         "when": "f04b5bedad7b281bee9814686bba1762bae092eb",
 116         "short": "[priority] Security: [[CVE-2023-46121](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46121)] Patch [Generic Extractor MITM Vulnerability via Arbitrary Proxy Injection](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-3ch3-jhc6-5r8x)\n\t- Disallow smuggling of arbitrary `http_headers`; extractors now only use specific headers"
 117     },
 118     {
 119         "action": "change",
 120         "when": "15f22b4880b6b3f71f350c64d70976ae65b9f1ca",
 121         "short": "[webvtt] Allow spaces before newlines for CueBlock (#7681)",
 122         "authors": ["TSRBerry"]
 123     },
 124     {
 125         "action": "change",
 126         "when": "4ce57d3b873c2887814cbec03d029533e82f7db5",
 127         "short": "[ie] Support multi-period MPD streams (#6654)",
 128         "authors": ["alard", "pukkandan"]
 129     },
 130     {
 131         "action": "change",
 132         "when": "aa7e9ae4f48276bd5d0173966c77db9484f65a0a",
 133         "short": "[ie/xvideos] Support new URL format (#9502)",
 134         "authors": ["sta1us"]
 135     },
 136     {
 137         "action": "remove",
 138         "when": "22e4dfacb61f62dfbb3eb41b31c7b69ba1059b80"
 139     },
 140     {
 141         "action": "change",
 142         "when": "e3a3ed8a981d9395c4859b6ef56cd02bc3148db2",
 143         "short": "[cleanup:ie] No `from` stdlib imports in extractors",
 144         "authors": ["pukkandan"]
 145     },
 146     {
 147         "action": "add",
 148         "when": "9590cc6b4768e190183d7d071a6c78170889116a",
 149         "short": "[priority] Security: [[CVE-2024-22423](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22423)] [Prevent RCE when using `--exec` with `%q` on Windows](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-hjq6-52gw-2g7p)\n    - The shell escape function now properly escapes `%`, `\\` and `\\n`.\n    - `utils.Popen` has been patched accordingly."
 150     },
 151     {
 152         "action": "change",
 153         "when": "41ba4a808b597a3afed78c89675a30deb6844450",
 154         "short": "[ie/tiktok] Extract via mobile API only if extractor-arg is passed (#9938)",
 155         "authors": ["bashonly"]
 156     },
 157     {
 158         "action": "remove",
 159         "when": "6e36d17f404556f0e3a43f441c477a71a91877d9"
 160     },
 161     {
 162         "action": "change",
 163         "when": "beaf832c7a9d57833f365ce18f6115b88071b296",
 164         "short": "[ie/soundcloud] Add `formats` extractor-arg (#10004)",
 165         "authors": ["bashonly", "Grub4K"]
 166     },
 167     {
 168         "action": "change",
 169         "when": "5c019f6328ad40d66561eac3c4de0b3cd070d0f6",
 170         "short": "[cleanup] Misc (#9765)",
 171         "authors": ["bashonly", "Grub4K", "seproDev"]
 172     }
 173 ]