Add nix support

[jmuelbert]

Add support for nix

• Add workflow for build the project with nix

Related Issues / Pull Requests

Motivation and Context

• Use nix on Mac and I will these also use here

[trunk-io]

Merging to main in this repository is managed by Trunk.

• To merge this pull request, check the box to the left or comment /trunk merge below.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.

See the Details below.

License Issues

.github/workflows/schedule.yaml

Package	Version	License	Issue Type
action/cache/restore	4.*.*	Null	Unknown License

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/cache/restore	4.*.*	🟢 7.1	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 9 security policy file detected SAST 🟢 10 SAST tool is run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/cache/save	4.*.*	🟢 7.1	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 9 security policy file detected SAST 🟢 10 SAST tool is run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/clearlyip/code-coverage-report-action	5.*.*	🟢 4.6	Details Check Score Reason Code-Review ⚠️ 2 Found 5/23 approved changesets -- score normalized to 2 Maintained ⚠️ 2 2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/marocchino/sticky-pull-request-comment	2.*.*	🟢 5.4	Details Check Score Reason Code-Review ⚠️ 2 Found 1/4 approved changesets -- score normalized to 2 Maintained 🟢 10 15 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/flake-checker-action	9.*.*	🟢 5.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 5 6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/cache/restore	4.*.*	🟢 7.1	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 9 security policy file detected SAST 🟢 10 SAST tool is run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/update-flake-lock	24.*.*	🟢 5.2	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 8 9 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 8 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 6 4 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/action/cache/restore	4.*.*	Unknown	Unknown
actions/actions/cache/save	4.*.*	🟢 7.1	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 9 security policy file detected SAST 🟢 10 SAST tool is run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/clearlyip/code-coverage-report-action	5.*.*	🟢 4.6	Details Check Score Reason Code-Review ⚠️ 2 Found 5/23 approved changesets -- score normalized to 2 Maintained ⚠️ 2 2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/reviewdog/action-suggester	1.*.*	🟢 3.5	Details Check Score Reason Code-Review ⚠️ 0 Found 0/4 approved changesets -- score normalized to 0 Maintained ⚠️ 1 2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/peter-evans/create-pull-request	7.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 5 Found 7/12 approved changesets -- score normalized to 5 Maintained 🟢 10 30 commit(s) and 26 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 1 dependency not pinned by hash detected -- score normalized to 1 Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/DeterminateSystems/magic-nix-cache-action	8.*.*	🟢 4.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/DeterminateSystems/nix-installer-action	14.*.*	🟢 5.3	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/actions/checkout	4.*.*	🟢 7.4	Details Check Score Reason Maintained 🟢 10 11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected

Scanned Manifest Files

.github/workflows/appstream-util-validate.yml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/checkout@4.*.*

.github/workflows/ci-nix.yml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/cache/restore@4.*.*
• actions/cache/save@4.*.*
• actions/checkout@4.*.*
• clearlyip/code-coverage-report-action@5.*.*
• marocchino/sticky-pull-request-comment@2.*.*

.github/workflows/desktop-file-validate.yml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/checkout@4.*.*

.github/workflows/external-data-checker.yml

• actions/checkout@4.*.*

.github/workflows/flake-checker.yml

• DeterminateSystems/flake-checker-action@9.*.*
• actions/checkout@4.*.*

.github/workflows/link-checker.yml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/cache/restore@4.*.*
• actions/checkout@4.*.*

.github/workflows/lock-updater.yml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• DeterminateSystems/update-flake-lock@24.*.*
• actions/checkout@4.*.*

.github/workflows/schedule.yaml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• action/cache/restore@4.*.*
• actions/cache/save@4.*.*
• actions/checkout@4.*.*
• clearlyip/code-coverage-report-action@5.*.*

.github/workflows/treefamt.yaml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/checkout@4.*.*
• reviewdog/action-suggester@1.*.*

.github/workflows/update-nix-direnv.yaml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/checkout@4.*.*
• peter-evans/create-pull-request@7.*.*

.github/workflows/yamllint.yaml

• DeterminateSystems/magic-nix-cache-action@8.*.*
• DeterminateSystems/nix-installer-action@14.*.*
• actions/checkout@4.*.*

[github-actions]

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
❌ ACTION	actionlint	27		62	0.28s
⚠️ BASH	bash-exec	4		2	0.08s
❌ BASH	shellcheck	4		3	0.03s
✅ BASH	shfmt	4	0	0	0.34s
✅ C	clang-format	82	73	0	0.88s
❌ C	cpplint	82		1423	5.44s
❌ COPYPASTE	jscpd	yes		364	4.9s
✅ CPP	clang-format	163	149	0	1.42s
❌ CPP	cpplint	163		2912	9.88s
✅ CSS	stylelint	1	1	0	1.45s
❌ DOCKERFILE	hadolint	3		1	0.68s
❌ HTML	djlint	1		1	0.84s
❌ HTML	htmlhint	1		11	0.26s
❌ JAVASCRIPT	eslint	2	0	1	0.8s
❌ JAVASCRIPT	standard	2	0	1	2.23s
❌ JSON	jsonlint	23		1	0.21s
❌ JSON	npm-package-json-lint	yes		1	0.52s
✅ JSON	prettier	29	0	0	0.73s
❌ JSON	v8r	23		1	37.61s
⚠️ MARKDOWN	markdownlint	23	16	64	3.38s
❌ MARKDOWN	markdown-link-check	25		22	63.23s
✅ MARKDOWN	markdown-table-formatter	25	17	0	0.79s
❌ POWERSHELL	powershell	3		23	4.86s
✅ POWERSHELL	powershell_formatter	3		0	4.26s
❌ PYTHON	bandit	10		5	0.99s
⚠️ PYTHON	black	10	0	1	1.28s
❌ PYTHON	flake8	10		14	0.75s
✅ PYTHON	isort	10	0	0	0.73s
❌ PYTHON	mypy	10		1	0.23s
❌ PYTHON	pylint	10		20	2.31s
❌ PYTHON	pyright	10		46	7.42s
❌ PYTHON	ruff	10	0	2	0.43s
❌ REPOSITORY	checkov	yes		46	17.88s
❌ REPOSITORY	devskim	yes		23	2.69s
❌ REPOSITORY	dustilock	yes		1	0.17s
❌ REPOSITORY	gitleaks	yes		7	18.26s
✅ REPOSITORY	git_diff	yes		no	0.09s
✅ REPOSITORY	grype	yes		no	13.9s
❌ REPOSITORY	kics	yes		133	33.37s
✅ REPOSITORY	secretlint	yes		no	4.8s
❌ REPOSITORY	trivy	yes		1	9.35s
✅ REPOSITORY	trivy-sbom	yes		no	1.24s
✅ REPOSITORY	trufflehog	yes		no	5.63s
❌ RST	rstcheck	18		4	20.4s
⚠️ RST	rstfmt	18	0	7	15.89s
❌ RST	rst-lint	18		12	5.83s
❌ SPELL	cspell	521		1	1.29s
❌ SPELL	lychee	255		41	5.16s
✅ SPELL	vale	8		0	0.64s
❌ TYPESCRIPT	eslint	3	0	1	0.82s
❌ TYPESCRIPT	ts-standard	3	0	1	5.13s
✅ XML	xmllint	9	0	0	0.41s
✅ YAML	prettier	159	4	0	1.7s
❌ YAML	v8r	159		1	163.05s
❌ YAML	yamllint	159		187	1.85s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

MegaLinter is graciously provided by

[github-advanced-security]

Scorecard found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.

[github-actions]

@check-spelling-bot Report

🔴 Please review

See the 📂 files view, the 📜action log, or 📝 job summary for details.

Unrecognized words (2163)

aarch
ABBD
abbo
ABCF
Aber
abfb
Abh
abi
abid
ablebodied
abled
Ablist
aboutdialog
absint
abspath
Abteilung
Abteilungsnamen
ACA
acai
Accessname
accountinputarea
accusee
acfe
aci
AClass
actionlint
activ
activeoff
activeon
adbe
addaction
Addresse
addstore
adf
adhd
Adresse
AECBA
aed
aee
aef
AFCBA
affordability
affrontery
Afrikaaner
afxres
agendize
AGPL
ahmadnassri
airlinese
Aissue
Akeem
Aktiv
Aktueller
aktuellste
Albuquerquean
Albuquerquian
Alertmanager
alex
alexshev
alla
allem
Alles
ALLEXTERNALS
alrightlist
alrightlisting
altera
Alternativ
amazonaws
amd
aminya
ammaraskar
amperser
AMPM
ams
amsmath
analsex
ANamespace
Anchorageite
Anchoragite
anchore
andere
anderem
Anforderungen
angeben
Angelean
angie
Anmeldename
antialiasing
antimalware
antispyware
Anwendung
Anwendungsordner
Aopen
apdisk
apk
appdata
APPDIR
appimage
appimagetool
applicatie
applicazione
appquick
apps
appstore
appstream
appveyer
appveyor
APPY
aqt
aqtinstall
aquasecurityofficial
Arbeit
ARCHIV
Archivos
Arcu
Areaa
Areaclass
Areeas
Arelease
argn
argparse
armhf
armv
ARPHELPLINK
ARPINSTALLOCATION
ARPNOREPAIR
ARPPRODUCTICON
ARPURLINFOABOUT
arrowsize
arrowtail
asciidoctor
asciify
ASingle
astro
astrodoc
Asuper
Atest
athletesfoot
atx
auch
audiobook
aufbauen
aufgerufen
Aufruf
auot
aus
ausf
Ausr
ausw
AUTOBRIEF
autobuild
autoclean
autodesktop
Autodetected
autodoc
autogen
autolabeler
Autolayout
automerge
AUTOMOC
autoprograms
AUTORCC
autoremove
autosectionlabel
autosort
autotests
autotoc
AUTOUIC
aws
awscli
awscliv
azienda
aziendale
BACA
bacb
backlight
backticks
badgen
bak
banlist
banlisting
BATCHMODE
batshit
bbb
bbf
bcbf
bcfbf
bdd
BDDD
Bearbeite
Bearbeiten
beastality
beastial
becf
bedeutet
bedrijf
Bedrijfscollector
beenden
Befehl
befindet
bei
beiden
beim
Belarusan
Belarusian
Benutzer
Benutzername
Benutzernamen
bereinstimmen
bergreifende
berpr
bersetzungen
betriebssystem
Betriebssystemen
Beyonc
Beyonce
Bezeichnung
bezier
bfb
bfd
Bibliothek
Bibliotheken
bibtex
bicurious
billyan
bincrafters
bindir
binutils
biomejs
bitbucket
bitmaps
Bitstream
blocklist
blocklisting
blogs
bme
Bmind
bmine
bmy
bocd
bomd
bountybar
boutonni
brac
brazilianportuguese
bre
bric
bridgecrewio
btford
BUGLIST
bugreport
bugtracker
Bugzilla
buildcommands
builddep
BUILDDIR
buildinfo
buildsystem
buildx
builtins
butante
buttplug
byteorder
CAAA
caap
cachix
callergraph
callgraph
Camerino
carta
casualities
Caymanian
cbf
ccache
ccdcd
ccmake
ccompiler
CCritical
CDAF
cdea
CDebug
cdfc
cdn
ceasefire
cec
CECB
CECC
CEDA
CEEA
cellphone
cellspacing
certifi
certs
certutil
cfeb
cfgv
cgi
chardet
charliermarsh
chatbot
checkboxes
checkconnect
checkov
cheshirekow
childrens
chipcard
chipcarddoor
chipcarddoorinputarea
chipcardinputarea
chipcardprofile
chipcardprofiledoor
chipcardprofiledoorinputarea
chipcardprofileinputarea
chocolateyinstall
chris
chrysalids
chstes
chten
chtml
Ciara
cigs
cinst
CInventory
Citian
Citro
Cityan
cityinputarea
cityname
ckgabe
CKV
clangd
clangformat
clangpath
clangtidy
classpath
clazy
clearlyip
cleftlipped
Clickedlist
Clockrate
clpath
cmakedefine
cmakelang
CMakelists
cmdline
cmds
cmp
coafile
cobertura
cocksucker
codacy
codecov
codecvt
CODEFILE
Codeium
codelytv
codeofconduct
CODEOWNERS
Codepage
codeql
codesandbox
codespaces
codespell
codespellrc
Codet
cohabitor
cois
colada
Colchane
collaborationgraph
collecter
Collecteur
COLORSTYLE
colortbl
colspan
Commandline
commitizen
commitlint
commondata
commondesktop
compamy
companyinputarea
Companyl
compat
Complementos
complicit
computerinputarea
Computernamen
computersoftware
computersoftwareinputarea
conan
conanbuildinfo
conanfile
conanrun
concrt
confg
CONFIGDIR
Configjmbde
configversion
confirmands
confirmant
Connecticuter
conspiratorialist
Constructur
containerd
contard
continous
conventionalcommits
conversate
cookiecutter
COPYONLY
Corroy
corsican
cout
cpack
cpes
cplusplus
cpmaddpackage
cpmgetpackageversion
cpmregisterpackage
cppcheck
cppcoreguidelines
cppdbg
cppm
cpprc
cppreference
cppstd
cpptools
cppvsdbg
cpr
cra
crackpipe
craftctl
crained
createrepo
crosscompile
CROSSCOMPILING
crt
crudit
Crue
cschlosser
cssvar
cstring
csvimportdialog
ctest
ctxt
cullmann
cunilingus
cunillingus
CUxl
CVJp
CVS
CXA
cxxm
cybersex
cyclonedx
Cygwin
CZip
Daher
damit
dann
dans
daringfireball
dass
databaseversion
datacare
datacontext
DATADIR
datafieldnames
Datafields
Datainput
Datakonsult
Datei
Dateien
Daten
Datenbank
Datenbankabfrage
Datenbankdatei
Datensammler
Datensatz
datenschutz
DATETIME
dati
davidanson
dawbarton
dbaeumer
DBB
DBUILD
DBus
dcef
dch
dcl
DCMAKE
dcompiler
dconf
DDDC
dde
DDEFAULT
ddl
deadnix
deafmute
dearmor
debian
DEBUGLIBS
debugpy
debuild
DED
defamative
defraudulent
degeneratory
DEMANGLE
DENABLE
deparment
departmentinputarea
departmet
deplan
DEPRECATEDLIST
derjenigen
desktopicon
dessant
destinationlabel
deth
devcontainer
developerapi
devguide
devicename
devicenameinputarea
devicetype
devicetypeinputarea
devilworshipper
devskim
dfa
DFAE
dfdfdf
DFF
dffc
DGSL
DHTML
diafile
DIAPLAY
diesem
diesen
Dieser
diffability
directorygraph
direnv
dirvars
disabledoff
disabledon
discomforture
disfluency
disincentivize
disroop
distlib
distro
djlint
DKDE
dlg
DLGTM
dmg
dnd
dnf
docbook
dockerfiles
docoument
docset
docstrings
doctoc
doctrees
Docu
documentaton
Documente
documentinputarea
docutils
Dokument
Dokumente
Dokumenten
Dominguez
donjayamanne
donn
donotpresent
dontinclude
doppelg
DOPT
dotfile
DOTFONTPATH
dotnet
downlo
dox
doxdocgen
doxyfile
doxygen
doxygenfile
doxyindexer
doxyrules
doxysearch
Doxywizard
dpi
dput
DQAPPLICATION
DQT
dri
drirc
Drucke
Drucker
Druckernamen
dsc
DTDs
dummyobject
dummyvalue
dummyvariable
duplicatory
durch
DVI
DVT
DWORD
dylib
eabi
eaca
EAF
eafdc
eamodio
eca
Ecal
ECLIPSEHELP
ecm
ecstacy
eda
edabf
edc
eea
eeaaad
EEECBCDF
efb
efd
EGL
ehthumbs
eigentlichen
ein
eine
einem
einen
einer
eingeben
einige
Einstellungen
Einstellungsdatun
eklady
Elasticsearch
elems
elfutils
Elysees
emacs
ement
emoji
employeeaccount
employeeaccountinputarea
employeedocument
employeedocumentinputarea
employeeinputarea
employeemodel
employeetable
emscripten
emsdk
endcond
enddate
Enddatum
endforeach
endfunction
endl
endmacro
endswith
enigmatas
enlargen
enplan
Entenhausen
Entenstra
enthalten
Entpacken
Entwickler
Entwicklungssystem
Equick
equinusocio
erfasst
erfolgreich
errorlevel
errorstop
ersetzen
erstellen
Erzeuge
erzeugen
erzeugt
Erzeugung
esbenp
esbonio
esktop
EULA
EUPL
exceuted
exiftool
Exportieren
EXPORTNAME
factorypath
faf
Fairbanksan
Fairbanksian
famfamfam
FAQs
Farbe
fastlane
fatfs
faxinputarea
Faxnumber
fcf
fcoroutines
fdec
featuredarticles
feb
febac
febcab
FEBD
Februar
FEEDNAME
FEEDURL
Fehler
Fehlerberichte
Fehlermeldung
felatio
Fertig
fetchcontent
ffcb
ffde
FFFA
ffne
ffnen
ffnet
fianc
fieldindexes
fieldname
fild
FILEFLAGS
FILEFLAGSMASK
filelock
FILEOS
FILESUBTYPE
filesystems
filetowrite
FILEVERSION
filipina
filmj
filmjolk
fina
finalise
finden
Findjmbdemodels
Findjmbdequick
Findjmbdewidgets
fingerfood
FINISHPAGE
Firefox
Firmen
Firstname
flathub
flatkpak
flatpak
flatpakimage
flatpakrepo
flawfinder
Flesch
Flickable
fltk
folgenden
fontcolor
fontello
fontname
FONTPATH
fontsize
fonttbl
footaction
forebearance
fortsetzen
Foto
fourtwenty
fpr
Fragen
fraice
fram
freedesktop
freedesktopsdk
fseventsd
fsfe
fswiss
fucktard
fuktion
fulcio
functioninputarea
Funktion
funktioniert
fwlink
gammaray
gasque
gbar
gbps
gcc
gcovr
gdiplus
GDK
geben
gebhard
Geburtstag
gedit
gefunden
gegevens
geht
gelocation
genindex
Gernot
gerry
geschlossen
gesichert
gestellt
getenv
Gew
Gewurztraminer
gha
ghaction
GHE
Ghz
gibt
githubocto
gitlab
gitleaks
gitlint
GLESV
glicherweise
glig
glx
gmail
gmx
gnueabi
gnueabihf
gnupg
gnuwin
goatherder
gonzagas
goodcheck
google
googleapis
googletest
goyum
gpg
GPLv
Grafana
grandfathered
grandfathering
graphviz
Grenadan
groe
grostulation
groupgraph
grudev
Grunds
gsettings
gsl
gtags
gtest
gtk
gtkmm
gub
gui
guisupport
guizi
guyutongxue
gyppo
hadolint
Halifaxer
hamas
Hampshireite
handicapable
handlet
handover
Harddisk
Hartlepoolian
Hartlepudlian
hashruler
hbenl
HCenter
HEADERFILE
hebephila
hebephile
hebephilia
hebephilic
heinrichreimer
hendrikmuhs
Hersteller
herunterladen
heshe
hhc
hhk
hhp
hicolor
hidecallergraph
hidecallgraph
hidecollaborationgraph
hidedirectorygraph
hidegroupgraph
hideincludedbygraph
hideincludegraph
hideinheritancegraph
hideinitializer
hier
Hilfe
hilfreiche
Hinweise
hinzf
hinzu
hinzuf
hiv
HKLM
HKMU
hlen
hlp
homeworkers
horney
horstretch
Hostx
hrbaren
hren
hrer
hsizetype
HSTS
htags
htmlhelp
htmlhint
htmlraw
hwrap
hykin
hymie
hyperlink
IBTo
icccm
icns
ICONDIR
iconengines
iconset
iconutil
Idcombo
IDEDM
Idform
idl
idna
idx
ieeetr
IExl
ifdef
ifndef
ifw
ignorecase
ignoreversion
IHELP
ihre
Ihrem
Ihren
Ihrer
IHRv
ikes
ilammy
imageformats
img
imgui
implementiert
Importieren
importlib
improprietous
inclimate
includedbygraph
INCLUDEDIR
includegraph
includehidden
incluye
Indexx
inexpense
Inferrable
inheritancegraph
inhouse
Initiaisiere
Initialisiere
initialisieren
Initialisierung
Initiallize
inkscape
innen
innnen
inno
innosetup
inout
inplace
inputarea
inputfields
insistment
Installationsanleitung
Installationspakete
Installationsprogramm
INSTALLDIR
installieren
installiert
installierten
Instantiator
INSTDIR
instructios
instsll
insuror
intelli
internalpointers
intersphinx
INTGER
intlimits
ints
Inuits
Inventar
Inventarnummer
inventoryinputarea
INVOKABLE
IOPTIONS
iostream
iot
Iowegian
ipp
IQUIT
ISCC
isdir
isfile
islamist
islu
ismap
israels
iss
issuecomment
italiano
itay
IVERSION
iwyu
ixx
jalape
japs
javadoc
Jax
jdkato
jeder
Jef
jesuschrist
jmbd
jmbde
jmbdemodels
jmbdepch
jmbdeqt
jmbdequick
jmbdetest
jmbdewidget
jmdbde
jmdbe
jmde
jmuelbert
jmuelbet
jquery
jsdelivr
jsonfmt
JSONLINT
jstemmer
judgmentally
juergen
jurplel
jwillikers
Kandeler
kangeroos
kann
Karten
kate
kateconfig
kbd
kdab
kde
KDEC
keine
kevinkyang
keyserver
keysyms
kitware
Klar
KLocalized
kock
Kommandozeile
Kommentare
Kommunikation
kompilieren
kompiliert
Kompilierungs
komplette
Konger
Kongian
Kongite
konnte
konnten
kotex
krause
krazy
krb
Kritischer
kubernetes
kwarg
KWrite
labelfontname
labelfontsize
lala
lapdance
lastname
latina
Latinx
layoutdefault
Layouter
lbert
lcov
learngitbranching
Leedsian
leeren
Leitf
Leodenisian
Lesen
Letze
Letzte
lexicographicall
Lezte
lfs
LGBT
LGBTQ
Liau
libc
libclang
libcrypto
libdbus
LIBDIR
libdrm
libegl
libexec
libgl
libglib
libglu
libgssapi
libharfbuzz
libiconv
libicu
LIBINFIX
libintl
libjmbde
libnewlib
libpcre
libqt
librsvg
libsdl
libstdc
libstdcpp
libtard
libxcb
libxcursor
libxkbcommon
linewidth
linkid
linuxdeployqt
liri
Liste
listfile
Liverpoolian
lix
Lizenz
Lizenzen
LJO
lld
lnk
localtime
localvars
LOGFILE
logicalcpu
logrus
Lokal
lolita
lon
longpaths
lonv
Lowenbrau
lproj
lsd
lstrip
lvdalens
lzma
lzo
macdeployqt
MACROFILE
madduci
Mailaddress
maincontroller
MAINPAGE
mainwindow
makedirs
Makefiles
makeindex
makeinfo
MAKEVAR
malware
Manchesterian
manfacturer
manhour
mansized
manufacturerinputarea
Manufacurer
markdownguide
markdownlint
marocchino
masterplan
matepek
materialdesignicons
mathjax
Mattermost
matthiashermsen
maxdepth
mchen
MDFILE
mdlrc
mega
megalinter
mehreren
meisten
meldet
MEMB
menuselection
metafile
metainfo
METAINFODIR
metavar
microsoft
migr
mikepenz
mildy
milli
minimalize
minimalized
minimalizing
miniperl
minmax
Minneapolisian
MINSIZEREL
Missouran
Mitarbeiter
Mitarbeiternamen
mkpath
MML
mmt
mobileinputarea
Mobilelabel
Mobilenputarea
Mobiletelefon
Mobilnummer
moblienumber
moderncmakedomain
modindex
modl
Modul
molestor
monetarize
monosans
mozilla
mployee
msc
mscfile
mscgen
msdo
msiexec
msix
mssql
msvc
msvcp
mudlet
muelbert
multiline
mutantdino
mvn
mycompany
myfile
myproj
myproject
mypy
mysql
Nachname
nage
nahmen
nalong
NAMELINK
nanapro
nand
Nassri
nativen
natvis
nauwelaerts
nbproject
nbut
ndere
nderung
nderungen
nderuung
ndex
ndig
ndigen
NDrop
Neargye
neologizer
Neopolitan
neovim
Nescaf
Nescafe
Netzwerk
neue
neuen
Neuer
neuere
neueste
Newcastleite
Newcastlite
newcommand
nez
nge
nger
ngigkeiten
ngstr
nicolas
niger
nipplering
nixfmt
nixos
nixpkgs
njmbdequick
njmuelbert
nnen
noch
noenv
nojekyll
NOLOGO
NONINFRINGEMENT
nooner
NOPASSWD
norestart
normaloff
normalon
noscroll
nosubgrouping
NOSYSTEM
Notizen
notwendig
notwendigen
nouement
Novocastrian
npmpackagejsonlintrc
nproc
nset
nsis
NSOn
NSPACES
nsswitch
NSv
NSWT
nthe
nullptr
Nummer
numtide
nupkg
nur
nushell
Nutmegger
Nutzung
nvd
NVDA
nvidia
OAuth
ober
objdump
ocornut
odbc
oder
Odio
odl
officiis
oftware
Oklahomian
ombuds
OMG
opengl
opensource
openssh
optimalize
Orci
oreo
orita
Orleanian
Orleansian
Ortsnamen
Orvault
osama
OSId
osinputarea
ossf
OSX
OSXX
outfile
outputdir
outputfile
oxsecurity
Oxymorons
packagecloud
pacman
paederasts
pak
pandoc
paperh
papersize
paperw
Papiergr
PARAMDOC
paret
parg
passlist
passlisting
Passwort
Patchveriosn
paydirt
PBitte
Pboard
pch
pdb
pdflatex
pearlnecklace
pedophiles
pendy
Peralillo
PERLMOD
Pfad
PFiles
pgsql
phoenisx
phoneinputarea
Phonelabel
Phonenumber
phonesex
pinays
pincode
pinoys
pipefail
pipx
pkgconfig
placeinputarea
plainnat
plantuml
platforminputcontexts
platisd
plattform
Plattformen
Platz
PLZ
pmd
pname
PNGs
pocahontas
podman
pointsize
policyowner
pooper
popd
popen
pornflick
postfacto
Postgre
POSTGRESQL
preclusory
precolumbian
PREDEF
preferencesdialog
preformat
preinstalled
prerequistes
primetime
printerinputarea
Printerr
printsupport
Priorit
privatedirectory
probieren
probonopd
processorinputarea
procreational
PRODUCTVERSION
Profil
programa
PROGRAMFILES
PROGRAMLISTING
programm
Programmdateien
programu
propget
propput
proptags
proselint
prot
protobuf
Providencer
Providencian
Providentian
Prozessor
PTRACE
pube
pushd
pwsh
pyc
pygmaen
pygments
pylance
pylint
pylintrc
pyproject
pyright
pytest
pytz
pyyaml
QAbstract
qapplication
QBENCHMARK
qbs
QByte
QCbor
qch
QChar
QCheck
QClose
QCombo
QCommand
QCOMPARE
QCore
QData
QDate
QDebug
QDialog
QDir
qdocconf
QDouble
qenums
QFETCH
QFile
QForm
Qgd
qgenericbearer
qgetenv
qgif
QGraphics
QGrid
QGroup
QGui
qguiapplication
QHash
qhcp
qhelpgenerator
QHG
qhp
qicns
qico
QIcon
QIO
QItem
qjpeg
QJson
QLabel
QLatin
QLibrary
QLine
QList
QLocale
QLogging
qlonglong
QMain
qmake
QMenu
QMessage
QMeta
qml
qmldir
qmllint
qmlprofile
qmlprofiler
qmlproject
qmodel
qnatural
QObject
QODBC
qpa
QPage
QPoint
QPointer
QPrint
QPrinter
QPSQL
QPush
QQml
qrc
QRegular
QResize
qresource
QScroll
QSettings
qsf
QSize
qsizetype
QSlider
QSpin
QSplitter
QSql
qsqlite
qsqlmysql
qsqlodbc
qsqlpsql
QStandard
QStatus
QString
qsvg
qsvgicon
QTable
qtbase
qtbuildprofiles
qtcharts
qtcreator
qtdeclarative
qtdoc
qtds
qtest
QText
qtga
QTHELP
qthelpproject
qtiff
qtimageformats
Qtjmbde
QTool
qtqml
qtquick
qtquickcontrols
QTranslator
QTree
qtscript
qtshadertools
qtsingleapplication
qtsvg
qttools
qttranslations
qtversion
qtvsctools
qtwayland
qtwebengine
Queensr
Queensryche
Quellcode
Quellen
quickinspector
quicklaunchicon
quickstart
quicktest
Quickversion
QUrl
QUuid
QVariant
QVERIFY
qvlog
qwbmp
qwebp
QWidget
qwindows
qwindowsvistastyle
raccogliere
Raccolta
Rahim
randr
rankdir
rapidjson
rarr
Raum
rdpart
rdparty
reapeating
Receipe
recived
recusement
redhat
redist
redistributable
redlight
Redmine
refact
refreshenv
Rekor
Relationmodel
RELEASELIBS
releasenotes
releation
Releted
relpath
RELWITHDEBINFO
renewcommand
resourcemonitor
Ressourcen
retifrav
retributional
retributionary
revokeable
rgb
rgba
riverbankcomputing
rmrf
robmensching
rofiles
Romani
rou
rpi
rpmbuild
rpmlint
rsource
rster
rstext
rtd
ruary
rubocop
runit
runtimes
Rxxx
rztraminer
safelist
safelisting
Salesforce
SAML
Sammeln
sanitizers
SAST
sbom
sbord
sche
schen
Schl
schlie
Schreiben
scht
Schwerer
scm
scottishgaelic
scpt
screenshot
scrollbars
SCXML
searchdata
SEARCHENGINE
Seattleite
Seattlite
seccomp
secretlint
secretlintrc
sectionauthor
selectedoff
selectedon
Selectio
serbiancyrillic
serbianlatin
Serialnumber
Seriennummer
servercore
servor
setattr
setuptools
setzen
sexample
sexchange
sexhouse
sextoy
sfml
shehe
shellcheck
shemale
shinola
SHLIBDEPS
shlomo
showinitializer
showtime
shs
sideeffect
sidepane
signalsandslots
Signup
sigstore
singleapplication
singlehtml
sirupsen
sitemap
sizepolicy
Skoda
slanderize
sloc
Smath
SMPROGRAMS
snapcore
snapcraft
snapimage
snf
soci
socio
softprops
softwareinputarea
solicitate
sollte
solrsearch
sonarqube
sondern
Soubory
SOURCEDIR
sourceforge
sourcelabel
SOVERSION
spdlog
spdx
spercent
SPHINXBUILD
sphinxcontrib
SPHINXOPTS
sphinxsidebarwrapper
splitext
spyware
sqlcheck
sqldrivers
sqlite
sqlx
ssel
sselchip
ssen
ssues
Ssymbols
stackblitz
stackoverflow
stagg
standalone
startdate
starten
startmenu
startswith
startuml
statix
statutorial
stdenv
STDINT
stdset
stefanzweifel
steht
STGZ
stiffy
strangequark
strapon
STREQUAL
structs
styfle
styleguide
stylelint
stylelintrc
stylesheet
subbuild
subdir
subgrouping
SUBLANG
submergeable
Submodul
Subview
Suchow
suopprts
Surinamer
Surinamese
suspendable
svenstaro
svgz
svn
swiftlint
swp
swyddfa
SYFT
SYSREQUIRES
systemdata
systemdatainputarea
Systemdatem
Systemdaten
tabchars
Tabelle
Tabellen
Tabellename
Tablename
tagfile
tagname
Taktrate
Tallahassean
Tallahasseean
tamasfe
taplo
TARGETDIR
taskbar
taskfile
taskkill
tbl
TBZ
technet
Tehe
Telefon
Telefone
Telefonnr
Telefonnummer
tember
tename
tenamen
TESTLIST
testname
tetyp
texi
texinfo
textureextension
tgz
thea
thead
thlorenz
tigen
tigt
tigten
timezone
Tisch
Titel
titleinputarea
tituswormer
TLDR
tley
Toc
toctree
TODOLIST
tokei
TOLOWER
tomwhross
toolbar
toolset
TOPLEVEL
tourettes
tradesmans
Traduzioni
tranny
transexual
transgender
transgenderism
tre
treefamt
treefmt
treeview
Trentian
Trifluvian
trisexual
Tristique
trivy
Tsch
tsconfigs
tseslint
twxs
TXZ
typedef
typedef'ed
tzip
tzlich
TZST
tzt
tzte
uary
ucf
UDBZ
uft
UML
Umlna
unbekannte
Unbekannter
Uncomparables
uncrustify
und
undoc
une
unequivocable
UNIICON
uninstallexe
Uninstallprogram
Unistallprogram
unixlike
unmercilessly
Unported
unrelentlessly
unscript
unstall
unstalling
unter
Unternehmen
unterst
unversioned
Upate
UPDATA
Updateline
urllib
usd
usepackage
userappdata
Utahn
vadimcn
Valladolidian
Vallisoletano
valuelist
valuemap
varchar
Variante
vartags
VCenter
vcpkg
vcredist
vcruntime
vcs
vcvarsall
vcvarsallpath
venv
Verbindung
Verbrauchsmaterial
vercel
verf
verlieren
Verschiedenes
versionadded
versionchanged
VERSIONCODE
versioninfo
verstretch
verwendet
verzamelen
Verzeichnis
VFT
vhd
vhdl
viele
viewcode
virtualenv
virtuals
visualstudioexptteam
voil
volker
vollst
vom
Vorgang
vorhanden
Vorname
Vorschau
VOS
vre
vsc
vscodeintellicodes
vsizetype
vswhere
vuillamy
wagoid
Warsawer
Warsawian
webfont
webp
Webrequest
Webseite
Website
weiter
wel
wenbr
werden
Werkzeuge
wheight
Widgetversion
wie
wifebeater
wifi
wikipedia
wil
wildcards
windeployqt
windowsprintersupport
WINDOWSSTATE
windowsvistastyle
winqt
winres
winresrc
winver
Winzig
wip
withastro
wix
wixtoolset
wixui
wmj
Wno
Wolverhamptonian
Wolverhamptonite
wom
womens
wordlist
Workaround
WORKDIR
workerscript
workflows
workspaces
Worther
Worthian
wpa
wronglist
wronglisting
Wulfrunian
wurde
wwwroot
xapian
xcode
xctoolchain
XCURSOR
xdg
XError
xfixes
xinerama
xkb
XSS
xtc
xterm
XWayland
xzf
yamlfmt
ymal
yocto
yokawasa
yuv
yzhang
zainchen
Zeile
zentral
zestily
Ziehen
zipcitiyinputarea
zipcity
zipcityinputarea
zipcode
zipcodeinputarea
zipfile
zipp
zoneinfo
zricethezav
zufuliu
Zugang
zum
zur
zwingend

Some files were automatically ignored 🙈

These sample patterns would exclude them:

(?:^|/)config\.cmake\.in$
/icons/[^/]+$
/styles/config/vocabularies/cspell/[^/]+$
^\Q.cspellcache\E$
^\Q.github/CODE_OF_CONDUCT_de-DE.md\E$
^\Q.github/CONTRIBUTING_de-DE.md\E$
^\Q.github/styles/vale/alex/ProfanityLikely.yml\E$
^\Q.github/workflows/desktop-file-validate.yml\E$
^\Q.github/workflows/external-data-checker.yml\E$
^\Q.github/workflows/flake-checker.yml\E$
^\Q.github/workflows/link-checker.yml\E$
^\Q.github/workflows/link-checker.ymö\E$
^\Q.github/workflows/lock-updater.yml\E$
^\Q.github/workflows/schedule.yaml\E$
^\Q.github/workflows/treefamt.yaml\E$
^\Q.mailmap\E$
^\Qapps/libs/models/autotests/data/test.diff\E$
^\Qapps/libs/widgets/CMakeLists_files.cmake\E$
^\Qdocs/api/index.rst\E$
^\Qpackaging/ifw/README.md\E$
^\Qpackaging/win/chocolatey/jmbde.nuspec\E$
^\Qpackaging/win/CMakeLists.txt\E$
^\Qpackaging/win/installer_Qt5_x64.wxs\E$
^\Qpnpm-lock.yaml\E$
^\Qresources/text/database.qmodel\E$
^apps/libs/quick/src/qml/models/qmldir$
^apps/libs/quick/src/qml/ui/qmldir$
^config/

You should consider excluding directory paths (e.g. (?:^|/)vendor/), filenames (e.g. (?:^|/)yarn\.lock$), or file extensions (e.g. \.gz$)

You should consider adding them to:

.github/actions/spelling/excludes.txt

File matching is via Perl regular expressions.

To check these files, more of their words need to be in the dictionary than not. You can use patterns.txt to exclude portions, add items to the dictionary (e.g. by adding them to allow.txt), or fix typos.

To accept these unrecognized words as correct and update file exclusions, you could run the following commands

... in a clone of the git@github.com:jmuelbert/jmbde-QT.git repository
on the add_nix_support branch (ℹ️ how do I use this?):

curl -s -S -L 'https://raw.githubusercontent.com/check-spelling/check-spelling/00c989c97749eb0cb2d256bdc55ac61b0096c6d3/apply.pl' |
perl - 'https://github.com/jmuelbert/jmbde-QT/actions/runs/11741947910/attempts/1'

OR

To have the bot accept them for you, reply quoting the following line:
@check-spelling-bot apply updates.

Available 📚 dictionaries could cover words not in the 📘 dictionary

Dictionary	Entries	Covers	Uniquely
cspell:python/src/python/python-lib.txt	2417	56	15
cspell:python/src/python/python.txt	392	36	11
cspell:python/src/common/extra.txt	741	18	10
cspell:cpp/src/ecosystem.txt	51	14	10
cspell:php/dict/php.txt	1689	25	6

Consider adding them (in .github/workflows/spelling.yml) for uses: check-spelling/check-spelling@00c989c97749eb0cb2d256bdc55ac61b0096c6d3 in its with:

      with:
        extra_dictionaries:
          cspell:python/src/python/python-lib.txt
          cspell:python/src/python/python.txt
          cspell:python/src/common/extra.txt
          cspell:cpp/src/ecosystem.txt
          cspell:php/dict/php.txt

To stop checking additional dictionaries, add (in .github/workflows/spelling.yml) for uses: check-spelling/check-spelling@00c989c97749eb0cb2d256bdc55ac61b0096c6d3 in its with:

check_extra_dictionaries: ''

Pattern suggestions ✂️ (37)

You could add these patterns to .github/actions/spelling/patterns.txt:

# Automatically suggested patterns
# hit-count: 1001 file-count: 260
# Non-English
[a-zA-Z]*[ÀÁÂÃÄÅÆČÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæčçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź][a-zA-Z]{3}[a-zA-ZÀÁÂÃÄÅÆČÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæčçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź]*|[a-zA-Z]{3,}[ÀÁÂÃÄÅÆČÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæčçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź]|[ÀÁÂÃÄÅÆČÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæčçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź][a-zA-Z]{3,}

# hit-count: 583 file-count: 154
# https/http/file urls
(?:\b(?:https?|ftp|file)://)[-A-Za-z0-9+&@#/%?=~_|!:,.;]+[-A-Za-z0-9+&@#/%=~_|]

# hit-count: 526 file-count: 41
# in check-spelling@v0.0.22+, printf markers aren't automatically consumed
# printf markers
(?<!\\)\\[nrt](?=[a-z]{2,})

# hit-count: 361 file-count: 7
# alternate markers if you run into latex and friends
(?<!\\)\\[nrt](?=[a-z]{2,})(?=.*['"`])

# hit-count: 352 file-count: 8
# uuid:
\b[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}\b

# hit-count: 225 file-count: 40
# GitHub SHAs (markdown)
(?:\[`?[0-9a-f]+`?\]\(https:/|)/(?:www\.|)github\.com(?:/[^/\s"]+){2,}(?:/[^/\s")]+)(?:[0-9a-f]+(?:[-0-9a-zA-Z/#.]*|)\b|)

# hit-count: 98 file-count: 26
# Compiler flags (Unix, Java/Scala)
# Use if you have things like `-Pdocker` and want to treat them as `docker`
(?:^|[\t ,>"'`=(])-(?:(?:J-|)[DPWXY]|[Llf])(?=[A-Z]{2,}|[A-Z][a-z]|[a-z]{2,})

# hit-count: 93 file-count: 23
# Compiler flags (Windows / PowerShell)
# This is a subset of the more general compiler flags pattern.
# It avoids matching `-Path` to prevent it from being treated as `ath`
(?:^|[\t ,"'`=(])-(?:[DPL](?=[A-Z]{2,})|[WXYlf](?=[A-Z]{2,}|[A-Z][a-z]|[a-z]{2,}))

# hit-count: 61 file-count: 10
# regex choice
\(\?:[^)]+\|[^)]+\)

# hit-count: 49 file-count: 24
# hex runs
\b[0-9a-fA-F]{16,}\b

# hit-count: 34 file-count: 34
# microsoft
\b(?:https?://|)(?:(?:download\.visualstudio|docs|msdn2?|research)\.microsoft|blogs\.msdn)\.com/[-_a-zA-Z0-9()=./%]*

# hit-count: 19 file-count: 3
# shields.io
\bshields\.io/[-\w/%?=&.:+;,]*

# hit-count: 16 file-count: 2
# .desktop localized entries
^[A-Z][a-z]+\[[a-z]+\]=.*$

# hit-count: 16 file-count: 2
# Localized .desktop content
Name\[[^\]]+\]=.*

# hit-count: 14 file-count: 2
# base64 encoded content, possibly wrapped in mime
(?:^|[\s=;:?])[-a-zA-Z=;:/0-9+]{50,}(?:[\s=;:?]|$)

# hit-count: 12 file-count: 6
# githubusercontent
/[-a-z0-9]+\.githubusercontent\.com/[-a-zA-Z0-9?&=_\/.]*

# hit-count: 10 file-count: 8
# Wikipedia
\ben\.wikipedia\.org/wiki/[-\w%.#]+

# hit-count: 10 file-count: 6
# version suffix <word>v#
(?:(?<=[A-Z]{2})V|(?<=[a-z]{2}|[A-Z]{2})v)\d+(?:\b|(?=[a-zA-Z_]))

# hit-count: 10 file-count: 4
# URL escaped characters
\%[0-9A-F][A-F]

# hit-count: 6 file-count: 1
# https://www.gnu.org/software/groff/manual/groff.html
# man troff content
\\f[BCIPR]

# hit-count: 4 file-count: 4
# hex digits including css/html color classes:
(?:[\\0][xX]|\\u|[uU]\+|#x?|\%23)[0-9_a-fA-FgGrR]*?[a-fA-FgGrR]{2,}[0-9_a-fA-FgGrR]*(?:[uUlL]{0,3}|[iu]\d+)\b

# hit-count: 3 file-count: 3
# This does not cover multiline strings, if your repository has them,
# you'll want to remove the `(?=.*?")` suffix.
# The `(?=.*?")` suffix should limit the false positives rate
# printf
%(?:(?:(?:hh?|ll?|[jzt])?[diuoxn]|l?[cs]|L?[fega]|p)(?=[a-z]{2,})|(?:X|L?[FEGA]|p)(?=[a-zA-Z]{2,}))(?=[_a-zA-Z]+\b)(?!%)(?=.*?['"])

# hit-count: 3 file-count: 1
# latex (check-spelling <= 0.0.21)
\\(?:n(?:ew|ormal|osub)|r(?:enew)|t(?:able(?:of|)|he|itle))(?=[a-z]+)

# hit-count: 2 file-count: 2
# node packages
(["'])\@[^/'" ]+/[^/'" ]+\g{-1}

# hit-count: 2 file-count: 2
# curl arguments
\b(?:\\n|)curl(?:\s+-[a-zA-Z]{1,2}\b)*(?:\s+-[a-zA-Z]{3,})(?:\s+-[a-zA-Z]+)*

# hit-count: 2 file-count: 2
# tar arguments
\b(?:\\n|)g?tar(?:\.exe|)(?:(?:\s+--[-a-zA-Z]+|\s+-[a-zA-Z]+|\s[ABGJMOPRSUWZacdfh-pr-xz]+\b)(?:=[^ ]*|))+

# hit-count: 2 file-count: 1
# apple
\bdeveloper\.apple\.com/[-\w?=/]+

# hit-count: 1 file-count: 1
# Google Storage
\b[-a-zA-Z0-9.]*\bstorage\d*\.googleapis\.com(?:/\S*|)

# hit-count: 1 file-count: 1
# git.io
\bgit\.io/[0-9a-zA-Z]+

# hit-count: 1 file-count: 1
# Internet Archive
\barchive\.org/web/\d+/(?:[-\w.?,'/\\+&%$#_:]*)

# hit-count: 1 file-count: 1
# vs devops
\bvisualstudio.com(?::443|)/[-\w/?=%&.]*

# hit-count: 1 file-count: 1
# Twitter markdown
\[\@[^[/\]:]*?\]\(https://twitter.com/[^/\s"')]*(?:/status/\d+(?:\?[-_0-9a-zA-Z&=]*|)|)\)

# hit-count: 1 file-count: 1
# Twitter status
\btwitter\.com/[^/\s"')]*(?:/status/\d+(?:\?[-_0-9a-zA-Z&=]*|)|)

# hit-count: 1 file-count: 1
# badgen.net
\bbadgen\.net/badge/[^")\]'\s]+

# hit-count: 1 file-count: 1
# sha-... -- uses a fancy capture
(\\?['"]|&quot;)[0-9a-f]{40,}\g{-1}

# hit-count: 1 file-count: 1
# Update Lorem based on your content (requires `ge` and `w` from https://github.com/jsoref/spelling; and `review` from https://github.com/check-spelling/check-spelling/wiki/Looking-for-items-locally )
# grep '^[^#].*lorem' .github/actions/spelling/patterns.txt|perl -pne 's/.*i..\?://;s/\).*//' |tr '|' "\n"|sort -f |xargs -n1 ge|perl -pne 's/^[^:]*://'|sort -u|w|sed -e 's/ .*//'|w|review -
# Warning, while `(?i)` is very neat and fancy, if you have some binary files that aren't proper unicode, you might run into:
## Operation "substitution (s///)" returns its argument for non-Unicode code point 0x1C19AE (the code point will vary).
## You could manually change `(?i)X...` to use `[Xx]...`
## or you could add the files to your `excludes` file (a version after 0.0.19 should identify the file path)
# Lorem
(?:\w|\s|[,.])*\b(?i)(?:amet|consectetur|cursus|dolor|eros|ipsum|lacus|libero|ligula|lorem|magna|neque|nulla|suscipit|tempus)\b(?:\w|\s|[,.])*

# hit-count: 1 file-count: 1
# latex (check-spelling >= 0.0.22)
\\\w{2,}\{

Errors (7)

See the 📂 files view, the 📜action log, or 📝 job summary for details.

❌ Errors	Count
ℹ️ binary-file	21
ℹ️ candidate-pattern	79
❌ check-file-path	856
❌ dictionary-not-found	6
❌ forbidden-pattern	23
ℹ️ large-file	5
ℹ️ noisy-file	23

See ❌ Event descriptions for more information.

If the flagged items are 🤯 false positives

If items relate to a ...

• binary file (or some other file you wouldn't want to check at all).

  Please add a file path to the excludes.txt file matching the containing file.

  File paths are Perl 5 Regular Expressions - you can
  test yours before committing to verify it will match
  your files.

  ^ refers to the file's path from the root of the repository, so ^README\.md$ would exclude
  README.md (on whichever branch you're using).

• well-formed pattern.

  If you can write a
  pattern
  that would match it, try adding it to the patterns.txt file.

  Patterns are Perl 5 Regular Expressions - you can
  test yours before committing to verify it will match
  your lines.

  Note that patterns can't match multiline strings.

🚂 If you're seeing this message and your PR is from a branch that doesn't have
check-spelling, please merge to your PR's base branch to get the version configured for your
repository.

[github-advanced-security]

check-spelling found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.