chore(deps): bump Jellyfin.Model from 10.10.6 to 10.10.7 #172

Open

dependabot[bot] wants to merge 1 commits from dependabot/nuget/Jellyfin.Model-10.10.7 into master

pull from: dependabot/nuget/Jellyfin.Model-10.10.7

merge into: Sirherobrine23:master

Sirherobrine23:master

Sirherobrine23:dependabot/github_actions/shogo82148/actions-upload-release-asset-1.8.1

Sirherobrine23:dependabot/nuget/Jellyfin.Xtream/multi-1412fe69e2

Sirherobrine23:fix/empty-air-date

Sirherobrine23:gh-pages

Sirherobrine23:feature/series-metadata

Sirherobrine23:fix/api-performance

Sirherobrine23:feature/datatables

Conversation 1 Commits 1 Files Changed 1 +1 -1

dependabot[bot] commented 2025-04-07 07:14:22 +00:00 (Migrated from github.com)

Copy Link

Bumps Jellyfin.Model from 10.10.6 to 10.10.7.

Release notes

Sourced from Jellyfin.Model's releases.

10.10.7

🚀 Jellyfin Server 10.10.7

We are pleased to announce the latest stable release of Jellyfin, version 10.10.7!

This minor release brings several bugfixes and security fixes to improve your Jellyfin experience.

As always, please ensure you stop your Jellyfin server and take a full backup before upgrading!

You can find more details about and discuss this release on our forums.

Important Notes

• Configurations behind a reverse proxy that did not explicitly configure trusted proxies will not work after this release. This was never a supported configuration, so please ensure you correct your configuration before upgrading. See the updated docs here for more information.

Changelog (12)

🔒 Security

• Fix validation of API parameters to FFmpeg [GHSA-2c3c-r7gp-q32m], by @​Shadowghost
• Fix trusting forward headers if none are configured [GHSA-qcmf-gmhm-rfv9], by @​JPVenson

Note: GHSAs will be published seven (7) days after this release.

📈 General Changes

• Fix regression where "Search for missing metadata" not handling cast having multiple roles [PR #13720], by @​Lampan-git
• Clone fallback audio tags instead of use ATL.Track.set [PR #13694], by @​gnattu
• Backport 10.11 API enum changes [PR #13835], by @​nielsvanvelzen
• Support more rating formats [PR #13639], by @​IDisposable
• Fix stackoverflow in MediaSourceCount [PR #12907], by @​JPVenson
• Upgrade LrcParser to 2025.228.1 [PR #13659], by @​congerh
• Include Role and SortOrder in MergePeople to fix "Search for missing metadata" [PR #13618], by @​Lampan-git
• Delete children from cache on parent delete [PR #13601], by @​Bond-009
• Fix overwrite of PremierDate with a year-only value [PR #13598], by @​IDisposable
• Wait for ffmpeg to exit on Windows before we try deleting the concat file [PR #13593], by @​Bond-009
• Fix 4K filtering when grouping movies into collections [PR #13594], by @​theguymadmax
• Remove empty ParentIndexNumber workaround [PR #13611], by @​Shadowghost
• Update dependency z440.atl.core to 6.20.0 [PR #13845], by @​Shadowghost

Commits

• aefb9b2 Bump version to 10.10.7
• abc51e8 Merge pull request #13845 from Shadowghost/upgrade-atl
• c929229 Update dependency z440.atl.core to 6.20.0 (#13811)
• f625665 Merge commit from fork
• 79f3ce5 Merge commit from fork
• 6938fac Update MediaBrowser.Controller/MediaEncoding/EncodingHelper.cs
• cafa0a1 Add validation for level input
• 24242a5 Rename ValidationRegex to ContainerValidationRegex
• 2d95245 Fix container parameter validation
• 784f6c5 Fix trusting all sources for forward headers if none are configured
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [Jellyfin.Model](https://github.com/jellyfin/jellyfin) from 10.10.6 to 10.10.7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jellyfin/jellyfin/releases">Jellyfin.Model's releases</a>.</em></p> <blockquote> <h2>10.10.7</h2> <h1>:rocket: Jellyfin Server 10.10.7</h1> <p>We are pleased to announce the latest stable release of Jellyfin, version 10.10.7!</p> <p>This minor release brings several bugfixes and security fixes to improve your Jellyfin experience.</p> <p>As always, please ensure you stop your Jellyfin server and take a full backup before upgrading!</p> <p>You can find more details about and discuss this release <a href="https://forum.jellyfin.org/t-new-jellyfin-server-web-release-10-10-7">on our forums</a>.</p> <h2>Important Notes</h2> <ul> <li>Configurations behind a reverse proxy that did not explicitly configure trusted proxies will not work after this release. This was never a supported configuration, so please ensure you correct your configuration before upgrading. See <a href="https://jellyfin.org/docs/general/networking/#known-proxies">the updated docs here</a> for more information.</li> </ul> <h2>Changelog (12)</h2> <h3>🔒 Security</h3> <ul> <li>Fix validation of API parameters to FFmpeg [<a href="https://github.com/jellyfin/jellyfin/security/advisories/GHSA-2c3c-r7gp-q32m">GHSA-2c3c-r7gp-q32m</a>], by <a href="https://github.com/Shadowghost"><code>@​Shadowghost</code></a></li> <li>Fix trusting forward headers if none are configured [<a href="https://github.com/jellyfin/jellyfin/security/advisories/GHSA-qcmf-gmhm-rfv9">GHSA-qcmf-gmhm-rfv9</a>], by <a href="https://github.com/JPVenson"><code>@​JPVenson</code></a></li> </ul> <p><strong>Note</strong>: GHSAs will be published seven (7) days after this release.</p> <h3>📈 General Changes</h3> <ul> <li>Fix regression where &quot;Search for missing metadata&quot; not handling cast having multiple roles [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13720">#13720</a>], by <a href="https://github.com/Lampan-git"><code>@​Lampan-git</code></a></li> <li>Clone fallback audio tags instead of use ATL.Track.set [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13694">#13694</a>], by <a href="https://github.com/gnattu"><code>@​gnattu</code></a></li> <li>Backport 10.11 API enum changes [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13835">#13835</a>], by <a href="https://github.com/nielsvanvelzen"><code>@​nielsvanvelzen</code></a></li> <li>Support more rating formats [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13639">#13639</a>], by <a href="https://github.com/IDisposable"><code>@​IDisposable</code></a></li> <li>Fix stackoverflow in MediaSourceCount [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/12907">#12907</a>], by <a href="https://github.com/JPVenson"><code>@​JPVenson</code></a></li> <li>Upgrade LrcParser to 2025.228.1 [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13659">#13659</a>], by <a href="https://github.com/congerh"><code>@​congerh</code></a></li> <li>Include Role and SortOrder in MergePeople to fix &quot;Search for missing metadata&quot; [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13618">#13618</a>], by <a href="https://github.com/Lampan-git"><code>@​Lampan-git</code></a></li> <li>Delete children from cache on parent delete [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13601">#13601</a>], by <a href="https://github.com/Bond-009"><code>@​Bond-009</code></a></li> <li>Fix overwrite of PremierDate with a year-only value [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13598">#13598</a>], by <a href="https://github.com/IDisposable"><code>@​IDisposable</code></a></li> <li>Wait for ffmpeg to exit on Windows before we try deleting the concat file [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13593">#13593</a>], by <a href="https://github.com/Bond-009"><code>@​Bond-009</code></a></li> <li>Fix 4K filtering when grouping movies into collections [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13594">#13594</a>], by <a href="https://github.com/theguymadmax"><code>@​theguymadmax</code></a></li> <li>Remove empty ParentIndexNumber workaround [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13611">#13611</a>], by <a href="https://github.com/Shadowghost"><code>@​Shadowghost</code></a></li> <li>Update dependency z440.atl.core to 6.20.0 [PR <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13845">#13845</a>], by <a href="https://github.com/Shadowghost"><code>@​Shadowghost</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jellyfin/jellyfin/commit/aefb9b2cffca3ccb7a95d89af0d9fb2040de6ed3"><code>aefb9b2</code></a> Bump version to 10.10.7</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/abc51e89a32f52aaaa4b8ebe5e22f3f07a08a876"><code>abc51e8</code></a> Merge pull request <a href="https://redirect.github.com/jellyfin/jellyfin/issues/13845">#13845</a> from Shadowghost/upgrade-atl</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/c9292290309fb9352958038af2e1e9d8a0a6dfd6"><code>c929229</code></a> Update dependency z440.atl.core to 6.20.0 (<a href="https://redirect.github.com/jellyfin/jellyfin/issues/13811">#13811</a>)</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/f625665cb116a7e3feb8b79aaf1ed39a956e0585"><code>f625665</code></a> Merge commit from fork</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/79f3ce53257c5291887cd52d8ac735b5252c9a97"><code>79f3ce5</code></a> Merge commit from fork</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/6938fac73e651bc7cc2594b9d1a64913a6ddc5d1"><code>6938fac</code></a> Update MediaBrowser.Controller/MediaEncoding/EncodingHelper.cs</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/cafa0a1e10c7f2df3172857ba294c974d1f83bea"><code>cafa0a1</code></a> Add validation for level input</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/24242a510d3a68f5ba4758adafb76dde8436ae0a"><code>24242a5</code></a> Rename ValidationRegex to ContainerValidationRegex</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/2d9524540519ea0f1d9629d31e1f65740ae98c65"><code>2d95245</code></a> Fix container parameter validation</li> <li><a href="https://github.com/jellyfin/jellyfin/commit/784f6c5eff1720c8af89be8d5ca3f7cfc2448a6a"><code>784f6c5</code></a> Fix trusting all sources for forward headers if none are configured</li> <li>Additional commits viewable in <a href="https://github.com/jellyfin/jellyfin/compare/v10.10.6...v10.10.7">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

dependabot[bot] commented 2025-04-07 07:14:23 +00:00 (Migrated from github.com)

Copy Link

Labels

The following labels could not be found: dependency. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

### Labels The following labels could not be found: `dependency`. Please create it before Dependabot can add it to a pull request. Please fix the above issues or remove invalid values from `dependabot.yml`.

This pull request can be merged automatically.

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin dependabot/nuget/Jellyfin.Model-10.10.7:dependabot/nuget/Jellyfin.Model-10.10.7

git checkout dependabot/nuget/Jellyfin.Model-10.10.7

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

blocked

This PR is blocked due to a commented reason

breaking

This PR introduces breaking changes

bug

This PR or Issue describes or fixes something that isn't working

chore

This PR contains repository maintenance changes

ci

This PR updates or changes something CI related

confirmed

This Issue describes a bug that has been confirmed by a org member

dependencies

This PR updates or changes a dependency file

deprecated

This PR marks a feature, function or other public API element as deprecated

documentation

This PR or Issue aims to improve or add to documentation

duplicate

This Issue or PR is a duplicate of an existing Issue or PR

feature

This PR or Issue requests or introduces a new feature

github-actions

This PR updates or changes GH Actions used in this repo

good first issue

This Issue contains a requirement easy to be picked up by project newcomers

help wanted

This Issue or PR requires extra attention and/or requires external help

invalid

This Issue describes an invalid request or bug report

major-bug

This PR fixes a major bug

major-feature

This PR introduces a major new feature

nuget

This PR updates or changes some NuGet dependencies

question

This Issue contains a question

release-prep

This PR is a meta PR to prepare for the next release

removed

This PR removes a feature, function or other public API element

reverted

This PR reverts a commit or multiple commits

skip-changelog

This PR gets ignored by the Release Drafter workflow

tests

This PR adds or imposes tests (e.g. coverage, quality, ...)

wontfix

This Issue contains a request or 'bug' that wont be fixed (e.g. out-of-scope, not-an-issue, ...)

No Label chore nuget

Milestone

No items

No Milestone

Assignees

Clear assignees

Sirherobrine23

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: Sirherobrine23/Jellyfin_Xtream#172

No description provided.