Skip to content

build(deps): upgrade FFmpeg and 5 static libraries to latest stable#58

Merged
flexiondotorg merged 2 commits into
mainfrom
upgrade
Jul 5, 2026
Merged

build(deps): upgrade FFmpeg and 5 static libraries to latest stable#58
flexiondotorg merged 2 commits into
mainfrom
upgrade

Conversation

@flexiondotorg

Copy link
Copy Markdown
Contributor

Align FFmpeg to 8.1.2 and bump 5 statically-linked dependencies to their latest stable releases. Includes a security patch for
OpenSSL 3.6.3 and compatible updates for libxml2, Vulkan-Headers, libva, and libvpl.

Changes

  • Bump FFmpeg from 8.1.1 to 8.1.2 with refreshed source digest
  • Update libavcodec and related headers from version 62.28.101 to 62.28.102
  • Bump openssl from 3.6.2 to 3.6.3 (security patch)
  • Bump libxml2 from 2.15.2 to 2.15.3
  • Bump Vulkan-Headers from 1.4.352 to 1.4.356
  • Bump libva from 2.23.0 to 2.24.0
  • Bump libvpl from 2.16.0 to 2.17.0
  • Update digests for all new archives; openssl 3.6.3 verified against upstream-published checksum
  • Refresh documentation version tables

Testing

  • Rebuilt FFmpeg 8.1.2 and all 5 updated libraries from source
  • All downloads verified against computed SHA-256 digests; no mismatches
  • Full test suite passes: go test ./...
  • Built example binary (introspect) against combined static lib; confirms all new library symbols resolve
  • Example output shows FFmpeg configured with updated dependencies (openssl, libxml2, libvpl, vaapi)

Signed-off-by: Martin Wimpress <code@wimpress.io>
  - openssl 3.6.2 → 3.6.3 (security patch)
  - libxml2 2.15.2 → 2.15.3
  - Vulkan-Headers 1.4.352 → 1.4.356
  - libva 2.23.0 → 2.24.0
  - libvpl 2.16.0 → 2.17.0

Signed-off-by: Martin Wimpress <code@wimpress.io>

@cubic-dev-ai cubic-dev-ai Bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No issues found across 17 files

Confidence score: 5/5

  • Automated review surfaced no issues in the provided summaries.
  • No files require special attention.

Requires human review: Upgrading core multimedia, security, and hardware-acceleration libraries (OpenSSL, FFmpeg, libxml2, Vulkan-Headers) carries significant risk. It requires human review for compatibility and build correctness.

Re-trigger cubic

@flexiondotorg flexiondotorg merged commit 47ba8e8 into main Jul 5, 2026
1 of 5 checks passed
@flexiondotorg flexiondotorg deleted the upgrade branch July 5, 2026 07:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant