npmpackage.info

@cspell/cspell-bundled-dicts

A Spell Checker for Code!

8.16.1

1,272

MIT

TypeScript

47,336,304 5.2

Installations

npm install @cspell/cspell-bundled-dicts

Pull Requests

Open

6

Total

6,104

Closed

1,501

Merged

4,597

Issues

Open

98

Total

430

Closed

332

Releases

198

v8.16.1

Published on 26 Nov 2024

v8.16.0

Published on 07 Nov 2024

v8.15.7

Published on 03 Nov 2024

v8.15.6

Published on 02 Nov 2024

v8.15.5

Published on 30 Oct 2024

v8.15.4

Published on 18 Oct 2024

View all 198 releases

Developer

streetsidesoftware

Developer Guide

BETA

Module System

CommonJS, ESM

Min. Node Version

>=18

Typescript Support

No

Node Version

18.20.5

NPM Version

lerna/3.10.0/node@v18.20.5+x64 (linux)

Statistics

1,272 Stars

5,691 Commits

104 Forks

13 Watching

12 Branches

66 Contributors

Updated on 28 Nov 2024

Languages

TypeScript (78.11%)

C++ (12%)

JavaScript (6.51%)

TeX (2.35%)

PowerShell (0.24%)

Haskell (0.19%)

Python (0.17%)

C (0.14%)

MDX (0.14%)

CSS (0.05%)

Ruby (0.03%)

Go (0.02%)

Shell (0.02%)

Svelte (0.02%)

C# (0.01%)

R (0.01%)

Total Downloads

Cumulative downloads

Total Downloads

47,336,304

Last day

-6.6%

123,598

Compared to previous day

Last week

-6.8%

679,479

Compared to previous week

Last month

2.7%

3,213,179

Compared to previous month

Last year

115.1%

26,049,559

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@cspell/dict-ada @cspell/dict-al @cspell/dict-aws @cspell/dict-bash @cspell/dict-companies @cspell/dict-cpp @cspell/dict-cryptocurrencies @cspell/dict-csharp @cspell/dict-css @cspell/dict-dart @cspell/dict-django @cspell/dict-docker @cspell/dict-dotnet @cspell/dict-elixir @cspell/dict-en-common-misspellings @cspell/dict-en-gb @cspell/dict-en_us @cspell/dict-filetypes @cspell/dict-flutter @cspell/dict-fonts @cspell/dict-fsharp @cspell/dict-fullstack @cspell/dict-gaming-terms @cspell/dict-git @cspell/dict-golang @cspell/dict-google @cspell/dict-haskell @cspell/dict-html @cspell/dict-html-symbol-entities @cspell/dict-java @cspell/dict-julia @cspell/dict-k8s @cspell/dict-latex @cspell/dict-lorem-ipsum @cspell/dict-lua @cspell/dict-makefile @cspell/dict-markdown @cspell/dict-monkeyc @cspell/dict-node @cspell/dict-npm @cspell/dict-php @cspell/dict-powershell @cspell/dict-public-licenses @cspell/dict-python @cspell/dict-r @cspell/dict-ruby @cspell/dict-rust @cspell/dict-scala @cspell/dict-software-terms @cspell/dict-sql @cspell/dict-svelte @cspell/dict-swift @cspell/dict-terraform @cspell/dict-typescript @cspell/dict-vue

Dev Dependencies

@cspell/cspell-tools @cspell/cspell-types

Versions

CSpell

The CSpell mono-repo, a spell checker for code.

Support Future Development

Documentation

Documentation - CSpell

Third-Party Video Presentations

Some videos related to CSpell and the Code Spell Checker for VS Code.

Spell Checking Documentation in DevOps Pipelines by Houssem Dellai
Don't Worry About Spelling...VS Code Can Do It For You!! by James Q Quick
Spell Checking In VSCode - VSCode Pro Tips
Spell Check in VS Code with Code Spell Checker - Extension Highlight
Spell check your code from the command line with Cspell
How to Use VS Code Spell Checker - Detailed walkthrough to setup and use multiple languages
Code Spell Checker Extension for Visual Studio Code

Packages

cspell -- cspell command-line application
@cspell/eslint-plugin -- CSpell ESLint Plugin
cspell-bundled-dicts -- collection of dictionaries bundled with cspell.
cspell-glob -- glob library.
cspell-io -- i/o library.
cspell-lib -- cspell library used for code driven spelling checking (used by the application).
cspell-types -- cspell types and JSON schema for cspell configuration files.
cspell-tools -- tool used to compile dictionaries.
cspell-trie-lib -- trie data structure used to store words.
cspell-trie -- trie data tool used to store words.
hunspell-reader -- reads Hunspell files and outputs words.

Related Packages

cspell-cli -- cspell-cli is useful for including cspell directly from GitHub.

Example install: npm install -g git+https://github.com/streetsidesoftware/cspell-cli.

This will add the cspell-cli command, which is an alias of the cspell command.

Live Discussions

Join us on:

cspell.zulipchat.com

RFCs

Link	Description	Status
rfc-0001	Fixing common misspellings	Done
rfc-0002	Improving Generated Suggestions	Done
rfc-0003	Plug-ins: Adding file parsers	In Progress
rfc-0004	Support Marking Issues as Known	Not started

CSpell for enterprise

Available as part of the Tidelift Subscription.

The maintainers of CSpell and thousands of other packages are working with Tidelift to deliver commercial support and maintenance for the open source packages you use to build your applications. Save time, reduce risk, and improve code health, while paying the maintainers of the exact packages you use. Learn more.

Security contact information

To report a security vulnerability, please email security@streetsidesoftware.com or use the Tidelift security contact. Tidelift will coordinate the fix and disclosure.

Versions

	version	Node	Status	Maintenance	End of Free Support
cspell	8.x	18.x	In Active Development	TBD	TBD
cspell	7.x	16.x	Maintenance	2023-10-01	2023-11-07
cspell	6.x	14.14.x	Paid support only¹	2023-04-01	2023-05-01
cspell	5.x	12.x	Paid support only¹	-	2022-10-01
cspell	4.x	10.x	Paid support only¹	-	2022-05-01

Contributing

Contributions are welcome! See our contribution notes. Note: To add or remove words in a dictionary, visit cspell-dicts.

🙏 Special thanks to all of our amazing contributors! 🥰

Brought to you by Street Side Software Logo Street Side Software

Support - Street Side Software ↩ ↩² ↩³

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Security-Policy

Determines if the project has published a security policy.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

SAST

Determines if the project uses static code analysis.

4

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

2

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 2

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-version-release.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/build-version-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-version-release.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/build-version-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/coverage.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/coverage.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/coverage.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cspell-action.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-action.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cspell-action.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-action.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cspell-action.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-action.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cspell-cli.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-cli.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cspell-cli.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-cli.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cspell-cli.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/cspell-cli.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/deploy-website.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/depsreview.yaml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/depsreview.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/depsreview.yaml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/depsreview.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-test.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:226: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:244: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:251: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-test.yml:275: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-test.yml:289: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-test.yml:296: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-test.yml:302: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-test.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/integration-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-docs.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/lint-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-build-dist-cache.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-build-dist-cache.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-list-integration-repos.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-list-integration-repos.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-load-integrations-repo-list.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-load-integrations-repo-list.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-load-integrations-repo-list.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-load-integrations-repo-list.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-pr-from-artifact.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-pr-from-artifact.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-pr-from-artifact.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-pr-from-artifact.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reuseable-pr.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/reuseable-pr.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/stale.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-build-docs.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test-build-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:187: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dependabot.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependabot.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dependabot.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependabot.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-dependabot.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependabot.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-dependabot.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependabot.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dependencies.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependencies.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dependencies.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependencies.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dependencies.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dependencies.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:174: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:202: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:253: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:265: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:293: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:312: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:320: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:326: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:344: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-dictionaries.yml:349: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-dictionaries.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-docs.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:175: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-integration-repositories.yml:201: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-integration-repositories.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-readme.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/update-readme.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website-lint.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/website-lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website-test.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/streetsidesoftware/cspell/website-test.yml/main?enable=pin
Info: 0 out of 77 GitHub-owned GitHubAction dependencies pinned
Info: 10 out of 22 third-party GitHubAction dependencies pinned

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

Reason

detected GitHub workflow tokens with excessive permissions

Details

Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:20
Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:21
Warn: jobLevel 'checks' permission set to 'write': .github/workflows/coverage.yml:36
Info: jobLevel 'contents' permission set to 'read': .github/workflows/coverage.yml:37
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release-drafter.yml:46
Info: topLevel 'contents' permission set to 'read': .github/workflows/build-version-release.yml:30
Warn: topLevel 'contents' permission set to 'write': .github/workflows/clean-cache.yml:8
Warn: topLevel 'actions' permission set to 'write': .github/workflows/clean-cache.yml:9
Info: topLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/coverage.yml:31
Info: topLevel 'contents' permission set to 'read': .github/workflows/cspell-action.yml:10
Info: topLevel 'contents' permission set to 'read': .github/workflows/cspell-cli.yml:11
Info: topLevel 'contents' permission set to 'read': .github/workflows/deploy-website.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/depsreview.yaml:5
Info: topLevel 'contents' permission set to 'read': .github/workflows/integration-test.yml:36
Info: topLevel 'contents' permission set to 'read': .github/workflows/issues-lock.yml:9
Warn: no topLevel permission defined: .github/workflows/labels.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/lint-docs.yml:14
Info: topLevel 'contents' permission set to 'read': .github/workflows/lint.yml:16
Info: topLevel 'contents' permission set to 'read': .github/workflows/publish.yml:14
Info: topLevel 'contents' permission set to 'read': .github/workflows/release-drafter.yml:16
Info: topLevel 'contents' permission set to 'read': .github/workflows/reuseable-build-dist-cache.yml:44
Info: topLevel 'contents' permission set to 'read': .github/workflows/reuseable-list-integration-repos.yml:23
Info: topLevel 'contents' permission set to 'read': .github/workflows/reuseable-load-integrations-repo-list.yml:27
Info: topLevel 'contents' permission set to 'read': .github/workflows/reuseable-pr-from-artifact.yml:42
Info: topLevel 'contents' permission set to 'read': .github/workflows/reuseable-pr.yml:37
Info: topLevel 'contents' permission set to 'read': .github/workflows/smoke-test.yml:28
Warn: no topLevel permission defined: .github/workflows/stale.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/test-build-docs.yml:9
Info: topLevel 'contents' permission set to 'read': .github/workflows/test.yml:36
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-dependabot.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-dependencies.yml:25
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-dictionaries.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-docs.yml:12
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-integration-repositories.yml:13
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-readme.yml:10
Info: topLevel 'contents' permission set to 'read': .github/workflows/website-lint.yml:13
Info: topLevel 'contents' permission set to 'read': .github/workflows/website-test.yml:18

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Fuzzing

Determines if the project uses fuzzing.

Score

5.2

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

@cspell/cspell-bundled-dicts

Installations

Pull Requests

6

6,104

1,501

4,597

Issues

98

430

332

Releases

Developer

Developer Guide

CommonJS, ESM

>=18

No

18.20.5

lerna/3.10.0/node@v18.20.5+x64 (linux)

Statistics

Languages

Total Downloads

47,336,304

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

CSpell

Support Future Development

Documentation

Third-Party Video Presentations

Packages

Related Packages

Live Discussions

RFCs

CSpell for enterprise

Security contact information

Versions

Contributing

Footnotes

10

10

10

10

10

10

4

2

0

0

0

0

0

5.2

/10