Bump yt-dlp from 2023.10.13 to 2023.11.14

[dependabot[bot]]

Bumps yt-dlp from 2023.10.13 to 2023.11.14.

Release notes

Sourced from yt-dlp's releases.

yt-dlp 2023.11.14

A description of the various files are in the README

---

Important changes

• The release channels have been adjusted!
  • master builds are made after each push, containing the latest fixes (but also possibly bugs). This was previously the nightly channel.
  • nightly builds are now made once a day, if there were any changes.
• Security: [CVE-2023-46121] Patch Generic Extractor MITM Vulnerability via Arbitrary Proxy Injection
  • Disallow smuggling of arbitrary http_headers; extractors now only use specific headers

Core changes

• Add --compat-option manifest-filesize-approx (#8356) by bashonly
• Fix format sorting with --load-info-json (#8521) by bashonly
• Include build origin in verbose output by bashonly, Grub4K
• Only ensure playlist thumbnail dir if writing thumbs (#8373) by bashonly
• update: Overhaul self-updater by bashonly, Grub4K

Extractor changes

• Do not smuggle http_headers by coletdjnz
• Do not test truth value of xml.etree.ElementTree.Element (#8582) by bashonly
• brilliantpala: Fix cookies support (#8352) by pzhlkj6612
• generic: Improve direct video link ext detection (#8340) by bashonly
• laxarxames: Add extractor (#8412) by aniolpages
• n-tv.de: Fix extractor (#8414) by 1100101
• neteasemusic: Improve metadata extraction (#8531) by LoserFox
• nhk: Improve metadata extraction (#8388) by garret1317
• novaembed: Improve _VALID_URL (#8368) by peci1
• npo: Send POST request to streams API endpoint (#8413) by bartbroere
• ondemandkorea: Overhaul extractor (#8386) by seproDev
• orf: podcast: Add extractor (#8486) by Esokrates
• polskieradio: audition: Fix playlist extraction (#8459) by shubhexists
• qdance: Update _VALID_URL (#8426) by bashonly
• radiocomercial: Add extractors (#8508) by SirElderling
• sbs.co.kr: Add extractors (#8326) by seproDev
• theatercomplextown: Add extractors (#8560) by bashonly
• thisav: Remove (#8346) by bashonly
• thisoldhouse: Add login support (#8561) by bashonly
• twitcasting: Fix livestream extraction (#8427) by JC-Chung, saintliao
• twitter
  • broadcast
    • Improve metadata extraction (#8383) by HitomaruKonpaku
    • Support --wait-for-video (#8475) by bashonly
• weibo: Fix extraction (#8463) by c-basalt
• weverse: Fix login error handling (#8458) by seproDev

... (truncated)

Changelog

Sourced from yt-dlp's changelog.

2023.11.14

Important changes

• The release channels have been adjusted!
  • master builds are made after each push, containing the latest fixes (but also possibly bugs). This was previously the nightly channel.
  • nightly builds are now made once a day, if there were any changes.
• Security: [CVE-2023-46121] Patch Generic Extractor MITM Vulnerability via Arbitrary Proxy Injection
  • Disallow smuggling of arbitrary http_headers; extractors now only use specific headers

Core changes

• Add --compat-option manifest-filesize-approx (#8356) by bashonly
• Fix format sorting with --load-info-json (#8521) by bashonly
• Include build origin in verbose output by bashonly, Grub4K
• Only ensure playlist thumbnail dir if writing thumbs (#8373) by bashonly
• update: Overhaul self-updater by bashonly, Grub4K

Extractor changes

• Do not smuggle http_headers by coletdjnz
• Do not test truth value of xml.etree.ElementTree.Element (#8582) by bashonly
• brilliantpala: Fix cookies support (#8352) by pzhlkj6612
• generic: Improve direct video link ext detection (#8340) by bashonly
• laxarxames: Add extractor (#8412) by aniolpages
• n-tv.de: Fix extractor (#8414) by 1100101
• neteasemusic: Improve metadata extraction (#8531) by LoserFox
• nhk: Improve metadata extraction (#8388) by garret1317
• novaembed: Improve _VALID_URL (#8368) by peci1
• npo: Send POST request to streams API endpoint (#8413) by bartbroere
• ondemandkorea: Overhaul extractor (#8386) by seproDev
• orf: podcast: Add extractor (#8486) by Esokrates
• polskieradio: audition: Fix playlist extraction (#8459) by shubhexists
• qdance: Update _VALID_URL (#8426) by bashonly
• radiocomercial: Add extractors (#8508) by SirElderling
• sbs.co.kr: Add extractors (#8326) by seproDev
• theatercomplextown: Add extractors (#8560) by bashonly
• thisav: Remove (#8346) by bashonly
• thisoldhouse: Add login support (#8561) by bashonly
• twitcasting: Fix livestream extraction (#8427) by JC-Chung, saintliao
• twitter
  • broadcast
    • Improve metadata extraction (#8383) by HitomaruKonpaku
    • Support --wait-for-video (#8475) by bashonly
• weibo: Fix extraction (#8463) by c-basalt
• weverse: Fix login error handling (#8458) by seproDev
• youtube: Check newly uploaded iOS HLS formats (#8336) by bashonly
• zoom: Extract combined view formats (#7847) by Mipsters

Downloader changes

• aria2c: Remove duplicate --file-allocation=none (#8332) by CrendKing
• dash: Force native downloader for --live-from-start (#8339) by bashonly

... (truncated)

Commits

• 5d3a3cd Release 2023.11.14
• a9d3f4b [cleanup] Fix changelog typo
• b012271 [cleanup] Misc (#8510)
• f04b5be [ie] Do not smuggle http_headers
• d4f14a7 [ie] Do not test truth value of xml.etree.ElementTree.Element (#8582)
• 87264d4 [test:update] Implement simple updater unit tests
• a00af29 [cleanup] Update documentation for master and nightly channels
• 0b6ad22 [update] Overhaul self-updater
• 5438593 [ci] Bump actions/checkout to v4
• 9970d74 [build] Include secretstorage in Linux builds
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[ghost]

👇 Click on the image for a new way to code review

#### [](https://app.codesee.io/r/reviews?pr=251&src=https%3A%2F%2Fgithub.com%2FIgKniteDev%2FIgKnite) #### Legend