Skip to content

v1.4.0 #78

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
DestroyCom merged 13 commits into from
Apr 23, 2025
Merged

v1.4.0 #78

DestroyCom merged 13 commits into from
Apr 23, 2025

Conversation

@DestroyCom
Copy link
Owner

@DestroyCom DestroyCom commented Apr 23, 2025

No description provided.

DestroyCom and others added 13 commits February 2, 2025 05:31
@DestroyCom
docs: update readme
e1deb70
@DestroyCom
docs: update readme
108593c
@DestroyCom
docs: upgrade docker-compose
9acb0d5
@DestroyCom
feat: add dependabot auto merge for distube
88872fc
@DestroyCom
feat: add dependabot auto merge for distube
a76bff9
@DestroyCom
Merge branch 'master' into fix-1
bfddb8a
@DestroyCom
feat: add dependabot auto merge for distube (#75)
56b2932
@dependabot
build(deps): bump @distube/ytdl-core from 4.16.0 to 4.16.6
6393dfa 
Bumps [@distube/ytdl-core](https://github.com/distubejs/ytdl-core) from 4.16.0 to 4.16.6.
- [Release notes](https://github.com/distubejs/ytdl-core/releases)
- [Commits](distubejs/ytdl-core@4.16.0...4.16.6)

---
updated-dependencies:
- dependency-name: "@distube/ytdl-core"
  dependency-version: 4.16.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions
build(deps): bump @distube/ytdl-core from 4.16.0 to 4.16.6 (#76)
386cc70
@dependabot
build(deps): bump @distube/ytdl-core from 4.16.6 to 4.16.8
fafc429 
Bumps [@distube/ytdl-core](https://github.com/distubejs/ytdl-core) from 4.16.6 to 4.16.8.
- [Release notes](https://github.com/distubejs/ytdl-core/releases)
- [Commits](distubejs/ytdl-core@4.16.6...4.16.8)

---
updated-dependencies:
- dependency-name: "@distube/ytdl-core"
  dependency-version: 4.16.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions
build(deps): bump @distube/ytdl-core from 4.16.6 to 4.16.8 (#77)
5f448e2
@DestroyCom
fix: remove play-dl
f708d49 
- Using youtube-dl-exec (with yt-dlp built-in) as a replacement
@DestroyCom
ci: add youtube-dl-exec to auto-upgrade packages
9705437
@DestroyCom DestroyCom requested a review from Copilot April 23, 2025 09:18
Copilot AI reviewed Apr 23, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR (v1.4.0) updates the streaming functionality in the player module while also refining deployment configurations and documentation. Key changes include:

  • Replacing '@distube/ytdl-core' with 'youtube-dl-exec' in src/core/player.ts and updating the associated stream handling.
  • Adjusting the docker-compose configuration by removing the version declaration and updating service definitions.
  • Updating the README with a refreshed Docker Compose setup and enhancing GitHub workflows for deployment and dependabot automation.

Reviewed Changes

Copilot reviewed 9 out of 10 changed files in this pull request and generated no comments.

Show a summary per file
File Description
src/core/player.ts Updated the streaming library and its usage with youtube-dl-exec.
docker-compose.yml Removed version declaration and updated service configuration.
README.md Amended documentation to include new Docker Compose instructions.
.github/workflows/deploy.yml Added repository_dispatch trigger to support release pipeline triggering.
.github/workflows/dependabot_post_merge.yml Introduced post-merge checks for Dependabot-related commits.
.github/workflows/dependabot-auto-merge.yml Configured automatic approval and merging for Dependabot PRs.
.github/dependabot.yml Modified update schedule from weekly to daily and adjusted dependency filters.
Files not reviewed (1)
  • package.json: Language not supported
Comments suppressed due to low confidence (2)

src/core/player.ts:42

  • Ensure that ytdl.exec returns a valid stream; consider adding more robust error handling for cases where stdout might be undefined to avoid silent failures.
const stream = ytdl.exec(nextSong.url, { noCheckCertificates: true, noWarnings: true, preferFreeFormats: true, addHeader: ['referer:youtube.com', 'user-agent:googlebot'], format: 'ba', output: '-' }).stdout;

docker-compose.yml:1

  • The removal of the version declaration could affect compatibility with older Docker Compose versions. Confirm that this change is intentional and update documentation if needed.
-version: '3'

@github-advanced-security
Copy link

github-advanced-security bot commented Apr 23, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 23, 2025
View reviewed changes
.github/workflows/dependabot_post_merge.yml
Comment on lines +10 to +30
runs-on: ubuntu-latest
outputs:
is_dependabot_merge: ${{ steps.check_author.outputs.is_dependabot_merge }}
steps:
- name: Checkout repository
uses: actions/checkout@v3
with:
fetch-depth: 2

- name: Check if commit is from Dependabot
id: check_author
run: |
AUTHOR=$(git log -1 --pretty=format:'%an')
echo "Commit author: $AUTHOR"
if [[ "$AUTHOR" == "dependabot[bot]" ]]; then
echo "is_dependabot_merge=true" >> $GITHUB_OUTPUT
else
echo "is_dependabot_merge=false" >> $GITHUB_OUTPUT
fi

trigger_release:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions Job or Workflow does not set permissions
.github/workflows/dependabot_post_merge.yml
Comment on lines +31 to +42
needs: check_for_dependabot_changes
if: needs.check_for_dependabot_changes.outputs.is_dependabot_merge == 'true'
runs-on: ubuntu-latest
steps:
- name: Checkout repo
uses: actions/checkout@v3

- name: Trigger release workflow
uses: peter-evans/repository-dispatch@v2
with:
token: ${{ secrets.GITHUB_TOKEN }}
event-type: trigger-release-pipeline

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions Job or Workflow does not set permissions
@DestroyCom DestroyCom merged commit db52267 into release Apr 23, 2025
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@DestroyCom