381·
1 month agoyt-dlp --sponsorblock-remove all <url> is the way. It turns playlist link into nicely named, curated video files awaiting to played by a regular video player
- 0 Posts
- 2 Comments
Joined 2 months ago
Cake day: December 28th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Agreed.
Also gtfobins is a great resource in addition to shellcheck to try to make secure scripts.
For instance I felt upon a script like this recently:
#!/bin/bash # ... some stuff ... tar -caf archive.tar.bz2 "$@"Quotes are OK, shellcheck is happy, but, according to gtfobins, you can abuse tar, so running the script like this:
./test.sh /dev/null --checkpoint=1 --checkpoint-action=exec=/bin/shends up spawning an interactive shell…So you can add up binaries insanity on top of bash’s mess.