You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
yt-dlp/devscripts
Simon Sawicki de015e9307
[core] Prevent RCE when using `--exec` with `%q` (CVE-2023-40581)
The shell escape function is now using `""` instead of `\"`. `utils.Popen` has been patched to properly quote commands.

Prior to this fix using `--exec` together with `%q` when on Windows could cause remote code to execute. See https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-42h4-v29r-42qg for reference.

Authored by: Grub4K
1 year ago
..
SizeOfImage.patch wine-py2exe.sh to create the exe under linux (!!) 13 years ago
SizeOfImage_w.patch wine-py2exe.sh to create the exe under linux (!!) 13 years ago
__init__.py [devscripts] Fix import 2 years ago
bash-completion.in Completely change project name to yt-dlp (#85) 4 years ago
bash-completion.py [cleanup] Consistent style for file heads 3 years ago
changelog_override.json [core] Prevent RCE when using `--exec` with `%q` (CVE-2023-40581) 1 year ago
changelog_override.schema.json [devscripts] Script to generate changelog (#6220) 2 years ago
check-porn.py [compat] Remove deprecated functions from core code 3 years ago
cli_to_api.py [cleanup] Misc 2 years ago
fish-completion.in Completely change project name to yt-dlp (#85) 4 years ago
fish-completion.py [cleanup] Consistent style for file heads 3 years ago
generate_aes_testdata.py [cleanup] Consistent style for file heads 3 years ago
lazy_load_template.py [extractor] Support multiple `_VALID_URL`s (#5812) 2 years ago
logo.ico Add logo and banner 3 years ago
make_changelog.py [cleanup] Misc (#8182) 1 year ago
make_contributing.py [cleanup] Consistent style for file heads 3 years ago
make_issue_template.py [cleanup] Misc 2 years ago
make_lazy_extractors.py Improve plugin architecture (#5553) 2 years ago
make_readme.py [build] Automated builds and nightly releases (#6220) 2 years ago
make_supportedsites.py [devscripts] Create `utils` and refactor 2 years ago
prepare_manpage.py [devscripts] Create `utils` and refactor 2 years ago
run_tests.bat [test] Convert warnings into errors 3 years ago
run_tests.sh [cleanup] Misc 2 years ago
set-variant.py [build, devscripts] Add devscript to set a build variant 2 years ago
update-formulae.py [devscripts] Create `utils` and refactor 2 years ago
update-version.py [core] Fix support for upcoming Python 3.12 (#8130) 1 year ago
utils.py [cleanup] Misc 2 years ago
zsh-completion.in Completely change project name to yt-dlp (#85) 4 years ago
zsh-completion.py [cleanup] Consistent style for file heads 3 years ago