Bump yt-dlp from 2023.7.6 to 2023.9.24

[dependabot[bot]]

Bumps yt-dlp from 2023.7.6 to 2023.9.24.

Release notes

Sourced from yt-dlp's releases.

yt-dlp 2023.09.24

A description of the various files are in the README

---

Important changes

• The minimum recommended Python version has been raised to 3.8 Since Python 3.7 has reached end-of-life, support for it will be dropped soon. Read more
• Security: [CVE-2023-40581] Prevent RCE when using --exec with %q on Windows
  • The shell escape function is now using "" instead of \".
  • utils.Popen has been patched to properly quote commands.

Core changes

• Fix HTTP headers and cookie handling by bashonly, pukkandan
• Fix --check-formats by pukkandan
• Fix support for upcoming Python 3.12 (#8130) by Grub4K
• Merged with youtube-dl 66ab08 by coletdjnz
• Prevent RCE when using --exec with %q (CVE-2023-40581) by Grub4K
• Raise minimum recommended Python version to 3.8 (#8183) by Grub4K
• FFmpegFixupM3u8PP may need to run with ffmpeg by pukkandan
• compat
  • Add types.NoneType by pukkandan (With fixes in 25b6e8f)
  • Deprecate old functions (#2861) by coletdjnz, pukkandan
  • Ensure submodules are imported correctly by pukkandan
• cookies: Containers JSON should be opened as utf-8 (#7800) by bashonly
• dependencies: Handle deprecation of sqlite3.version (#8167) by bashonly
• outtmpl: Fix replacement for playlist_index by pukkandan
• utils
  • Add temporary shim for logging by pukkandan
  • Improve parse_duration by bashonly
  • HTTPHeaderDict: Handle byte values by pukkandan
  • clean_podcast_url: Handle more trackers (#7556) by bashonly, mabdelfattah
  • js_to_json: Handle Array objects by Grub4K, std-move

Extractor changes

• Extract subtitles from SMIL manifests (#7667) by bashonly, pukkandan
• Fix --load-pages by pukkandan
• Make _search_nuxt_data more lenient by std-move
• abematv
  • Fix proxy handling (#8046) by SevenLives
  • Temporary fix for protocol handler by pukkandan
• amazonminitv: Fix extractors by bashonly, GautamMKGarg
• antenna: Support antenna.gr (#7584) by stdedos
• artetv: Fix HLS formats extraction by bashonly
• axs: Add extractor (#8094) by barsnick
• banbye: Support video ids containing a hyphen (#8059) by kshitiz305

... (truncated)

Changelog

Sourced from yt-dlp's changelog.

Changelog

2023.09.24

Important changes

• The minimum recommended Python version has been raised to 3.8 Since Python 3.7 has reached end-of-life, support for it will be dropped soon. Read more
• Security: [CVE-2023-40581] Prevent RCE when using --exec with %q on Windows
  • The shell escape function is now using "" instead of \".
  • utils.Popen has been patched to properly quote commands.

Core changes

• Fix HTTP headers and cookie handling by bashonly, pukkandan
• Fix --check-formats by pukkandan
• Fix support for upcoming Python 3.12 (#8130) by Grub4K
• Merged with youtube-dl 66ab08 by coletdjnz
• Prevent RCE when using --exec with %q (CVE-2023-40581) by Grub4K
• Raise minimum recommended Python version to 3.8 (#8183) by Grub4K
• FFmpegFixupM3u8PP may need to run with ffmpeg by pukkandan
• compat
  • Add types.NoneType by pukkandan (With fixes in 25b6e8f)
  • Deprecate old functions (#2861) by coletdjnz, pukkandan
  • Ensure submodules are imported correctly by pukkandan
• cookies: Containers JSON should be opened as utf-8 (#7800) by bashonly
• dependencies: Handle deprecation of sqlite3.version (#8167) by bashonly
• outtmpl: Fix replacement for playlist_index by pukkandan
• utils
  • Add temporary shim for logging by pukkandan
  • Improve parse_duration by bashonly
  • HTTPHeaderDict: Handle byte values by pukkandan
  • clean_podcast_url: Handle more trackers (#7556) by bashonly, mabdelfattah
  • js_to_json: Handle Array objects by Grub4K, std-move

Extractor changes

• Extract subtitles from SMIL manifests (#7667) by bashonly, pukkandan
• Fix --load-pages by pukkandan
• Make _search_nuxt_data more lenient by std-move
• abematv
  • Fix proxy handling (#8046) by SevenLives
  • Temporary fix for protocol handler by pukkandan
• amazonminitv: Fix extractors by bashonly, GautamMKGarg
• antenna: Support antenna.gr (#7584) by stdedos
• artetv: Fix HLS formats extraction by bashonly
• axs: Add extractor (#8094) by barsnick
• banbye: Support video ids containing a hyphen (#8059) by kshitiz305
• bbc: Extract tracklist as chapters (#7788) by garret1317

... (truncated)

Commits

• c54ddfb Release 2023.09.24
• 088add9 [cleanup] Misc
• de015e9 [core] Prevent RCE when using --exec with %q (CVE-2023-40581)
• 61bdf15 [core] Raise minimum recommended Python version to 3.8 (#8183)
• 1eaca74 [ie/nfl.com:plus:replay] Fix extractor (#7838)
• 92feb56 [ie/brilliantpala] Add extractors (#6680)
• 698beb9 [ie/niconicochannelplus] Add extractors (#5686)
• 1559194 [ie/cineverse] Add extractors (#8146)
• 6636021 [ie/PIAULIZAPortal] Add extractor (#7903)
• eaee21b [ie/Monstercat] Add extractor (#8133)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[ghost]

👇 Click on the image for a new way to code review

#### [](https://app.codesee.io/r/reviews?pr=247&src=https%3A%2F%2Fgithub.com%2FIgKniteDev%2FIgKnite) #### Legend