aboutsummaryrefslogtreecommitdiff
path: root/youtube_dl/update.py
AgeCommit message (Collapse)Author
2019-03-11Start moving to ytdl-orgSergey M․
2018-02-27Revert "Respect --prefer-insecure while updating (closes #15497)"Sergey M․
This reverts commit 7d2b4aa04790b51a0b2b717eed618296115061a8.
2018-02-18Respect --prefer-insecure while updating (closes #15497)Sergey M․
2016-05-22[update] Fix youtube-dl.exe updating from arbitrary directory (Closes #2718)Sergey M․
2016-02-14[refactor] Single quotes consistencySergey M․
2016-01-21[update] fix (unexploitable) BB'06 vulnerability in rsa_verifyFilippo Valsorda
The rsa_verify code was vulnerable to a BB'06 attack, allowing to forge signatures for arbitrary messages if and only if the public key exponent is 3. Since the updates key is hardcoded to 65537, there is no risk for youtube-dl, but I don't want vulnerable code in the wild. The new function adopts a way safer approach of encoding-and-comparing to replace the dangerous parsing code.
2015-12-20Use proper encoding on compat_str construction when necessarySergey M․
2015-11-15Removing an unnecessary importDavid Ben Zakai
2015-11-10Adding proxy to update procedureDavid Ben Zakai
2015-06-07update: Use https for getting the version info (fixes #5909)Jaime Marquínez Ferrándiz
2015-03-27Don't use bare 'except:'Jaime Marquínez Ferrándiz
They catch any exception, including KeyboardInterrupt, we don't want to catch it.
2015-01-10Add new option --source-addressPhilipp Hagemeister
Closes #3618, fixes #721, fixes #2481, fixes #4551, closes #1020.
2015-01-09[update] Use utils HTTPS handler (Fixes #4666)Philipp Hagemeister
On FreeBSD, the default HTTPS handler is missing certificates, so use our own.
2014-12-09Fix PEP8 issue E713Jaime Marquínez Ferrándiz
2014-11-26[update] Remove useless importPhilipp Hagemeister
2014-11-26[update] ModernizePhilipp Hagemeister
2014-11-23PEP8: E225,E227Jouke Waleson
2014-11-23PEP8: more appliedJouke Waleson
2014-11-23PEP8 appliedJouke Waleson
2014-01-23Clarify update output (Fixes #2205)Philipp Hagemeister
No, we are not intentionally hiding the version number. Why would we?
2013-11-24[update] fix errorPhilipp Hagemeister
2013-11-22[update] Check if version from repository is newer before updatingPhilipp Hagemeister
Closes #1704
2013-11-22[update] do not assign to unused variablesPhilipp Hagemeister
2013-11-17Remove * importsPhilipp Hagemeister
2013-09-29[update] Prevent cmd window popup on Windows (Fixes #1478)Philipp Hagemeister
2013-09-29[update] Look for .exe extension on Windows (Fixes #745)Philipp Hagemeister
2013-07-01[update] Add package manager to error message (#959)Philipp Hagemeister
2013-04-28Fix print_notesPhilipp Hagemeister
2013-04-06Change rg3.github.com to rg3.github.io almost everywhereRicardo Garcia
2013-02-25Fix typoPhilipp Hagemeister
2013-02-22Print *all* release notesPhilipp Hagemeister
2012-12-30moved updating code to update.pyFilippo Valsorda