PrivateCoffee/alltube
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
1509 commits 1 branch 0 tags 4.5 MiB
Commit graph

305 commits

Author SHA1 Message Date
dependabot[bot]
e7fd4c6bc4
Bump guzzlehttp/guzzle from 6.5.5 to 6.5.6 (#412) 
Bumps [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) from 6.5.5 to 6.5.6.
- [Release notes](https://github.com/guzzle/guzzle/releases)
- [Changelog](https://github.com/guzzle/guzzle/blob/6.5.6/CHANGELOG.md)
- [Commits](https://github.com/guzzle/guzzle/compare/6.5.5...6.5.6)

---
updated-dependencies:
- dependency-name: guzzlehttp/guzzle
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-28 23:50:56 +02:00
dependabot[bot]
b894cdd6ce
Bump smarty/smarty from 3.1.43 to 3.1.45 (#413) 
Bumps smarty/smarty from 3.1.43 to 3.1.45.

---
updated-dependencies:
- dependency-name: smarty/smarty
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-28 23:50:20 +02:00
dependabot[bot]
6731fcdf96
Bump guzzlehttp/psr7 from 1.6.1 to 1.8.5 (#406) 
Bumps [guzzlehttp/psr7](https://github.com/guzzle/psr7) from 1.6.1 to 1.8.5.
- [Release notes](https://github.com/guzzle/psr7/releases)
- [Changelog](https://github.com/guzzle/psr7/blob/1.8.5/CHANGELOG.md)
- [Commits](https://github.com/guzzle/psr7/compare/1.6.1...1.8.5)

---
updated-dependencies:
- dependency-name: guzzlehttp/psr7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-30 09:11:45 +02:00
Pierre Rudloff
8913f27716 Disable the generic extractor entirely 
It can be used for SSRF attacks even when redirects are disabled
 2022-03-08 09:29:57 +01:00
Pierre Rudloff
1b099bb983 Patch youtube-dl to disable redirects 
In order to prevent SSRF attacks using redirects
 2022-02-27 12:30:15 +01:00
Pierre Rudloff
3a4f09dda0 Prevent SSRF requests 
By validating the provided URL before passing it to youtube-dl
 2022-02-27 11:00:33 +01:00
dependabot[bot]
fb78ecb410 Bump smarty/smarty from 3.1.39 to 3.1.43 (#383) 
Bumps smarty/smarty from 3.1.39 to 3.1.43.

---
updated-dependencies:
- dependency-name: smarty/smarty
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-01-13 00:05:49 +01:00
Pierre Rudloff
b902c9027b Upgrade youtube-dl to 2021.04.01 (fixes #349) 2021-04-02 21:05:50 +02:00
Pierre Rudloff
97d6532388 Merge branch 'master' into develop 2021-02-26 22:53:09 +01:00
dependabot[bot]
6ab19b6d84
Bump smarty/smarty from 3.1.33 to 3.1.39 (#346) 
Bumps smarty/smarty from 3.1.33 to 3.1.39.

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-02-26 22:48:17 +01:00
Pierre Rudloff
3cfd450258 Use a stable release of debugbar-smarty 2021-02-11 19:36:11 +01:00
Pierre Rudloff
9a27e7764a Upgrade grumphp to 1.3 
In order to use the new securitychecker_enlightn task
 2021-02-07 13:40:02 +01:00
Pierre Rudloff
36ba147430 phpstan update 2021-02-07 12:42:03 +01:00
Pierre Rudloff
50fe879f16 Add route info to debug bar 2021-02-07 12:24:16 +01:00
Pierre Rudloff
9af922f3f1 Add Smarty collector to debug bar 2021-02-07 00:03:37 +01:00
Pierre Rudloff
5c0ed594f3 Debug bar 2021-02-06 15:35:09 +01:00
Pierre Rudloff
58f79c5012 Use enlightn/security-checker instead of sensiolabs/security-checker (fixes #342) 2021-02-02 21:26:26 +01:00
Pierre Rudloff
05959b17f0 Upgrade grumphp to 1.1 
In order to improve output in CI
 2020-11-16 23:31:18 +01:00
Pierre Rudloff
b5a585443a fixup! The youtube-dl repository is back 2020-11-16 23:28:36 +01:00
Pierre Rudloff
81e42057f9 Upgrade composer-dangling-locked-deps to 0.2.1 
To fix Composer 2 compatibility
 2020-11-16 23:21:32 +01:00
Pierre Rudloff
a800a058fa The youtube-dl repository is back 2020-11-16 20:48:03 +01:00
Pierre Rudloff
17422d8485 Upgrade youtube-dl to 2020.11.01.1 (fixes #326) 2020-11-02 21:09:27 +01:00
Pierre Rudloff
f4a9528b56 Explicitely require PHP >= 7.3 2020-10-28 22:17:27 +01:00
Pierre Rudloff
c15f1e6bba Use a stable release of alltube-library 2020-10-27 23:33:00 +01:00
Pierre Rudloff
e330adec76 Get youtube-dl from PyPI (fixes #323) 2020-10-27 23:18:59 +01:00
Pierre Rudloff
9a12a2d13b Don't install open-sans in vendor 2020-10-20 01:24:36 +02:00
Pierre Rudloff
f29a61f182 Upgrade pretty-package-versions to 1.5 
So we can have a cleaner way to get the root package version
 2020-10-20 00:22:34 +02:00
Pierre Rudloff
22bcbbb9ae Upgrade grumphp to 1.0 
So tests can be run in parallel
 2020-10-20 00:16:56 +02:00
Pierre Rudloff
561b6c8370 Make the CSP compatible with debug tools 2020-10-19 23:59:23 +02:00
Pierre Rudloff
fe80308610 Update alltube-library 2020-10-17 22:51:39 +02:00
Pierre Rudloff
5ee9d457b2 Upgrade youtube-dl to 2020.09 (fixes #300) 2020-10-10 23:05:08 +02:00
Pierre Rudloff
8ab2ed838b Upgrade composer-dangling-locked-deps to 0.2 2020-10-09 23:38:23 +02:00
Pierre Rudloff
d38b1cd9aa composer-dangling-locked-deps 2020-09-01 12:47:06 +02:00
Pierre Rudloff
3ba720dce0 Get open-sans from Packagist 
So we can stop requiring Asset Packagist
 2020-07-20 23:04:03 +02:00
Pierre Rudloff
2dcd1239a4 Remove dangling dependencies 2020-07-20 22:33:53 +02:00
Pierre Rudloff
96a75cbf14 Log youtube-dl and ffmpeg commands (fixes #297) 2020-07-15 22:52:38 +02:00
Pierre Rudloff
7e575e1bb2 composer-normalize 2020-07-05 11:58:50 +02:00
Pierre Rudloff
32f0a5012c Use security-checker instead of security-advisories 
So it can be checked with grumphp
 2020-07-05 03:23:14 +02:00
Pierre Rudloff
9d6389b1a7 Remove obsolete locked dependencies 2020-07-05 03:18:40 +02:00
Pierre Rudloff
39f66d4e7e security-advisories update 2020-07-05 02:19:09 +02:00
Pierre Rudloff
f90a08e89c Stop installing ffmpeg and phantomjs with Composer 
It is convenient but this a the job of the OS package manager
 2020-06-22 23:21:22 +02:00
Pierre Rudloff
251fbe48ca Add generator meta with the current version 2020-06-21 15:51:28 +02:00
Pierre Rudloff
d4b3a82ebb Remove obsolete Composer config 2020-06-21 15:12:28 +02:00
Pierre Rudloff
5c2823e3f1 Move Video class to a separate library 
+ improve error handling
+ youtube-dl update
 2020-06-21 15:12:03 +02:00
Pierre Rudloff
7d94271a49 Remove support for launching Heroku locally 
This is untested and probably broken
 2020-06-20 14:25:27 +02:00
Pierre Rudloff
62dac1e5bb Move youtube-dl, ffmpeg and phantomsjs to dev dependencies (fixes #280) 2020-06-20 14:20:31 +02:00
Pierre Rudloff
359615d0ed grumphp update 
To provide Composer 2 compatibility
 2020-06-20 13:49:01 +02:00
Pierre Rudloff
e777f51490 Dependencies update 
symfony/finder should be a production dependency
 2020-05-28 00:57:02 +02:00
Pierre Rudloff
5051602174 grumphp should be a dev dependency 2020-05-14 12:38:58 +02:00
Pierre Rudloff
6a3bc97219 phpcs update 2020-05-14 10:55:43 +02:00