{"id":32570510,"url":"https://github.com/editorconfig-checker/editorconfig-checker.javascript","last_synced_at":"2025-10-29T08:17:37.915Z","repository":{"id":18905836,"uuid":"85400043","full_name":"editorconfig-checker/editorconfig-checker.javascript","owner":"editorconfig-checker","description":"A tool to verify that your files are in harmony with your .editorconfig","archived":false,"fork":false,"pushed_at":"2025-10-24T09:55:40.000Z","size":4861,"stargazers_count":71,"open_issues_count":5,"forks_count":13,"subscribers_count":7,"default_branch":"master","last_synced_at":"2025-10-24T11:19:18.534Z","etag":null,"topics":["clean-architecture","code-quality","codequality","editorconfig","editorconfig-checker","linting"],"latest_commit_sha":null,"homepage":"https://editorconfig-checker.github.io/","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/editorconfig-checker.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG-LEGACY.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2017-03-18T12:37:12.000Z","updated_at":"2025-10-24T10:19:44.000Z","dependencies_parsed_at":"2024-03-08T13:27:30.672Z","dependency_job_id":"43ac8a1f-9e58-4db1-ae89-79fe0fdc487f","html_url":"https://github.com/editorconfig-checker/editorconfig-checker.javascript","commit_stats":{"total_commits":449,"total_committers":14,"mean_commits":32.07142857142857,"dds":0.5612472160356348,"last_synced_commit":"0b6936164ff49e623bfbe98731136c485470cf20"},"previous_names":[],"tags_count":45,"template":false,"template_full_name":null,"purl":"pkg:github/editorconfig-checker/editorconfig-checker.javascript","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editorconfig-checker%2Feditorconfig-checker.javascript","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editorconfig-checker%2Feditorconfig-checker.javascript/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editorconfig-checker%2Feditorconfig-checker.javascript/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editorconfig-checker%2Feditorconfig-checker.javascript/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/editorconfig-checker","download_url":"https://codeload.github.com/editorconfig-checker/editorconfig-checker.javascript/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editorconfig-checker%2Feditorconfig-checker.javascript/sbom","scorecard":{"id":366759,"data":{"date":"2025-08-11","repo":{"name":"github.com/editorconfig-checker/editorconfig-checker.javascript","commit":"1304f6d0e527df5078d1f9fc9efffb235bc91765"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.9,"checks":[{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Maintained","score":1,"reason":"1 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 1","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Code-Review","score":1,"reason":"Found 3/25 approved changesets -- score normalized to 1","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Pinned-Dependencies","score":2,"reason":"dependency not pinned by hash detected -- score normalized to 2","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/codeql.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/codeql.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/codeql.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/codeql.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/editorconfig-checker/editorconfig-checker.javascript/release.yml/master?enable=pin","Info:   0 out of   8 GitHub-owned GitHubAction dependencies pinned","Info:   2 out of   2 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Token-Permissions","score":9,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:14","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:15","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/ci.yml:10","Warn: no topLevel permission defined: .github/workflows/codeql.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":8,"reason":"SAST tool detected but not run on all commits","details":["Info: SAST configuration detected: CodeQL","Warn: 6 commits out of 9 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":3,"reason":"7 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-x4c5-c7rf-jjgv","Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q","Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38","Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-52f5-9888-hmc6"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-18T11:59:23.013Z","repository_id":18905836,"created_at":"2025-08-18T11:59:23.013Z","updated_at":"2025-08-18T11:59:23.013Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":281585582,"owners_count":26526323,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-29T02:00:06.901Z","response_time":59,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["clean-architecture","code-quality","codequality","editorconfig","editorconfig-checker","linting"],"created_at":"2025-10-29T08:16:17.998Z","updated_at":"2025-10-29T08:17:37.909Z","avatar_url":"https://github.com/editorconfig-checker.png","language":"TypeScript","readme":"# editorconfig-checker\n\n![Logo](docs/logo.png)\n\n[![npm](https://img.shields.io/npm/v/editorconfig-checker.svg)](https://www.npmjs.com/package/editorconfig-checker)\n[![Build Status](https://github.com/editorconfig-checker/editorconfig-checker.javascript/actions/workflows/ci.yml/badge.svg?branch=master)](https://github.com/editorconfig-checker/editorconfig-checker.javascript/actions/workflows/ci.yml)\n![[Conventionnal Commits](https://conventionalcommits.org)](https://img.shields.io/badge/Conventional%20Commits-1.0.0-yellow.svg)\n[![Semantic Release](https://img.shields.io/badge/%20%20%F0%9F%93%A6%F0%9F%9A%80-semantic--release-e10079.svg)](https://github.com/semantic-release/semantic-release)\n\n\u003ca href=\"https://www.buymeacoffee.com/mstruebing\" target=\"_blank\"\u003e\u003cimg src=\"https://www.buymeacoffee.com/assets/img/custom_images/orange_img.png\" alt=\"Buy Me A Coffee\" style=\"height: 41px !important;width: 174px !important;box-shadow: 0px 3px 2px 0px rgba(190, 190, 190, 0.5) !important;-webkit-box-shadow: 0px 3px 2px 0px rgba(190, 190, 190, 0.5) !important;\" \u003e\u003c/a\u003e\n\n## What?\n\nThis is a tool to check if your files consider your `.editorconfig` rules.\nMost tools—like linters, for example—only test one filetype and need an extra configuration.\nThis tool only needs your `.editorconfig` to check all files.\n\n![Example Screenshot](docs/screenshot.png)\n\n## Important\n\nThis is only a wrapper for the core [editorconfig-checker](https://github.com/editorconfig-checker/editorconfig-checker).\nYou should have a look at this repository to know how this tool can be used and what possibilities/caveats are there.\nThis version can be used in the same way as the core as every argument is simply passed down to it.\n\n## Installation\n\nInstallation via npm/yarn is recommended:\n\n```shell\nnpm install --save-dev editorconfig-checker\nyarn add --dev editorconfig-checker\n```\n\nOtherwise you could clone the repository and execute the script manually.\n\n```shell\ngit clone https://github.com/editorconfig-checker/editorconfig-checker.javascript\ncd editorconfig-checker.javascript\nnpm install\nnpm run build\nnpm test\nnpm start\n```\n\n## Usage\n\nThere is an alias from `editorconfig-checker` to `ec` so you can exchange every occurrence of `editorconfig-checker` with `ec`.\n\nIf you installed it via npm you have a binary in your `node_modules/.bin` folder called `editorconfig-checker`.\nThen you could create a script in your `package.json` like this:\n\n```json\n\"scripts\": {\n  \"lint:editorconfig\": \"editorconfig-checker\"\n}\n```\n\nUsage output:\n\n```txt\nUSAGE:\n  -config string\n        config\n  -debug\n        print debugging information\n  -disable-end-of-line\n        disables the trailing whitespace check\n  -disable-indent-size\n        disables only the indent-size check\n  -disable-indentation\n        disables the indentation check\n  -disable-insert-final-newline\n        disables the final newline check\n  -disable-trim-trailing-whitespace\n        disables the trailing whitespace check\n  -dry-run\n        show which files would be checked\n  -exclude string\n        a regex which files should be excluded from checking - needs to be a valid regular expression\n  -h    print the help\n  -help\n        print the help\n  -ignore-defaults\n        ignore default excludes\n  -init\n        creates an initial configuration\n  -no-color\n        dont print colors\n  -v    print debugging information\n  -verbose\n        print debugging information\n  -version\n        print the version number\n```\n\n## Support\n\nIf you have any questions, suggestions or just want to chat join #editorconfig-checker on freenode(IRC).\nIf you don't have an IRC-client set up you can use the [freenode webchat](https://webchat.freenode.net/?channels=editorconfig-checker).\n","funding_links":["https://www.buymeacoffee.com/mstruebing"],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feditorconfig-checker%2Feditorconfig-checker.javascript","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Feditorconfig-checker%2Feditorconfig-checker.javascript","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feditorconfig-checker%2Feditorconfig-checker.javascript/lists"}