Refresh check-spelling workflow (#865)

2 years ago · e7e21f9b40
parent 21c58ae1f5
commit e7e21f9b40
10 changed files with 678 additions and 37 deletions
--- a/.github/actions/spelling/README.md
+++ b/.github/actions/spelling/README.md
@ -8,6 +8,7 @@ File | Purpose | Format | Info
 [excludes.txt](excludes.txt) | Files to ignore entirely | perl regular expression | [excludes](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-excludes)
 [only.txt](only.txt) | Only check matching files (applied after excludes) | perl regular expression | [only](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-only)
 [patterns.txt](patterns.txt) | Patterns to ignore from checked lines | perl regular expression (order matters, first match wins) | [patterns](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-patterns)
 [line_forbidden.patterns](line_forbidden.patterns) | Patterns to flag in checked lines | perl regular expression (order matters, first match wins) | [patterns](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-patterns)
 [expect.txt](expect.txt) | Expected words that aren't in the dictionary | one word per line (sorted, alphabetically) | [expect](https://github.com/check-spelling/check-spelling/wiki/Configuration#expect)
 [advice.md](advice.md) | Supplement for GitHub comment when unrecognized words are found | GitHub Markdown | [advice](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-advice)
--- a/.github/actions/spelling/advice.md
+++ b/.github/actions/spelling/advice.md
@ -1,27 +1,25 @@
 <!-- See https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples%3A-advice --> <!-- markdownlint-disable MD033 MD041 -->
-<details><summary>If you see a bunch of garbage</summary>
+<details><summary>If the flagged items are false positives</summary>
-If it relates to a ...
+If items relate to a ...
-<details><summary>well-formed pattern</summary>
+* binary file (or some other file you wouldn't want to check at all).
-See if there's a [pattern](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples:-patterns) that would match it.
+  Please add a file path to the `excludes.txt` file matching the containing file.
-If not, try writing one and adding it to the `patterns.txt` file.
+  File paths are Perl 5 Regular Expressions - you can [test](
 https://www.regexplanet.com/advanced/perl/) yours before committing to verify it will match your files.
-Patterns are Perl 5 Regular Expressions - you can [test](
+  `^` refers to the file's path from the root of the repository, so `^README\.md$` would exclude [README.md](
-https://www.regexplanet.com/advanced/perl/) yours before committing to verify it will match your lines.
+../tree/HEAD/README.md) (on whichever branch you're using).
-Note that patterns can't match multiline strings.
+* well-formed pattern.
 </details>
 <details><summary>binary-ish string</summary>
-Please add a file path to the `excludes.txt` file instead of just accepting the garbage.
+  If you can write a [pattern](https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples:-patterns) that would match it,
  try adding it to the `patterns.txt` file.
-File paths are Perl 5 Regular Expressions - you can [test](
+  Patterns are Perl 5 Regular Expressions - you can [test](
-https://www.regexplanet.com/advanced/perl/) yours before committing to verify it will match your files.
+https://www.regexplanet.com/advanced/perl/) yours before committing to verify it will match your lines.
-`^` refers to the file's path from the root of the repository, so `^README\.md$` would exclude [README.md](
+  Note that patterns can't match multiline strings.
 ../tree/HEAD/README.md) (on whichever branch you're using).
 </details>
 </details>
--- a/.github/actions/spelling/allow.txt
+++ b/.github/actions/spelling/allow.txt
@ -0,0 +1,4 @@
 github
 https
 ssh
 ubuntu
--- a/.github/actions/spelling/candidate.patterns
+++ b/.github/actions/spelling/candidate.patterns
@ -0,0 +1,458 @@
 # marker to ignore all code on line
 ^.*/\* #no-spell-check-line \*/.*$
 # marker for ignoring a comment to the end of the line
 // #no-spell-check.*$
 # patch hunk comments
 ^\@\@ -\d+(?:,\d+|) \+\d+(?:,\d+|) \@\@ .*
 # git index header
 index [0-9a-z]{7,40}\.\.[0-9a-z]{7,40}
 # cid urls
 (['"])cid:.*?\g{-1}
 # data url in parens
 \(data:[^)]*?(?:[A-Z]{3,}|[A-Z][a-z]{2,}|[a-z]{3,})[^)]*\)
 # data url in quotes
 ([`'"])data:.*?(?:[A-Z]{3,}|[A-Z][a-z]{2,}|[a-z]{3,}).*\g{-1}
 # data url
 data:[-a-zA-Z=;:/0-9+]*,\S*
 # mailto urls
 mailto:[-a-zA-Z=;:/?%&0-9+@.]{3,}
 # magnet urls
 magnet:[?=:\w]+
 # obs:
 "obs:[^"]*"
 # The `\b` here means a break, it's the fancy way to handle urls, but it makes things harder to read
 # In this examples content, I'm using a number of different ways to match things to show various approaches
 # asciinema
 \basciinema\.org/a/[0-9a-zA-Z]+
 # apple
 \bdeveloper\.apple\.com/[-\w?=/]+
 # Apple music
 \bembed\.music\.apple\.com/fr/playlist/usr-share/[-\w.]+
 # appveyor api
 \bci\.appveyor\.com/api/projects/status/[0-9a-z]+
 # appveyor project
 \bci\.appveyor\.com/project/(?:[^/\s"]*/){2}builds?/\d+/job/[0-9a-z]+
 # Amazon
 # Amazon
 \bamazon\.com/[-\w]+/(?:dp/[0-9A-Z]+|)
 # AWS S3
 \b\w*\.s3[^.]*\.amazonaws\.com/[-\w/&#%_?:=]*
 # AWS execute-api
 \b[0-9a-z]{10}\.execute-api\.[-0-9a-z]+\.amazonaws\.com\b
 # AWS ELB
 \b\w+\.[-0-9a-z]+\.elb\.amazonaws\.com\b
 # AWS SNS
 \bsns\.[-0-9a-z]+.amazonaws\.com/[-\w/&#%_?:=]*
 # While you could try to match `http://` and `https://` by using `s?` in `https?://`, sometimes there
 # YouTube url
 \b(?:(?:www\.|)youtube\.com|youtu.be)/(?:channel/|embed/|user/|playlist\?list=|watch\?v=|v/|)[-a-zA-Z0-9?&=_%]*
 # YouTube music
 \bmusic\.youtube\.com/youtubei/v1/browse(?:[?&]\w+=[-a-zA-Z0-9?&=_]*)
 # YouTube tag
 <\s*youtube\s+id=['"][-a-zA-Z0-9?_]*['"]
 # YouTube image
 \bimg\.youtube\.com/vi/[-a-zA-Z0-9?&=_]*
 # Google Accounts
 \baccounts.google.com/[-_/?=.:;+%&0-9a-zA-Z]*
 # Google Analytics
 \bgoogle-analytics\.com/collect.[-0-9a-zA-Z?%=&_.~]*
 # Google APIs
 \bgoogleapis\.(?:com|dev)/[a-z]+/(?:v\d+/|)[a-z]+/[-@:./?=\w]+
 # Google Storage
 \b[-a-zA-Z0-9.]*\bstorage\d*\.googleapis\.com(?:/\S*|)
 # Google Calendar
 \bcalendar\.google\.com/calendar(?:/u/\d+|)/embed\?src=[@./?=\w&%]+
 \w+\@group\.calendar\.google\.com\b
 # Google DataStudio
 \bdatastudio\.google\.com/(?:(?:c/|)u/\d+/|)(?:embed/|)(?:open|reporting|datasources|s)/[-0-9a-zA-Z]+(?:/page/[-0-9a-zA-Z]+|)
 # The leading `/` here is as opposed to the `\b` above
 # ... a short way to match `https://` or `http://` since most urls have one of those prefixes
 # Google Docs
 /docs\.google\.com/[a-z]+/(?:ccc\?key=\w+|(?:u/\d+|d/(?:e/|)[0-9a-zA-Z_-]+/)?(?:edit\?[-\w=#.]*|/\?[\w=&]*|))
 # Google Drive
 \bdrive\.google\.com/(?:file/d/|open)[-0-9a-zA-Z_?=]*
 # Google Groups
 \bgroups\.google\.com/(?:(?:forum/#!|d/)(?:msg|topics?|searchin)|a)/[^/\s"]+/[-a-zA-Z0-9$]+(?:/[-a-zA-Z0-9]+)*
 # Google Maps
 \bmaps\.google\.com/maps\?[\w&;=]*
 # Google themes
 themes\.googleusercontent\.com/static/fonts/[^/\s"]+/v\d+/[^.]+.
 # Google CDN
 \bclients2\.google(?:usercontent|)\.com[-0-9a-zA-Z/.]*
 # Goo.gl
 /goo\.gl/[a-zA-Z0-9]+
 # Google Chrome Store
 \bchrome\.google\.com/webstore/detail/[-\w]*(?:/\w*|)
 # Google Books
 \bgoogle\.(?:\w{2,4})/books(?:/\w+)*\?[-\w\d=&#.]*
 # Google Fonts
 \bfonts\.(?:googleapis|gstatic)\.com/[-/?=:;+&0-9a-zA-Z]*
 # Google Forms
 \bforms\.gle/\w+
 # Google Scholar
 \bscholar\.google\.com/citations\?user=[A-Za-z0-9_]+
 # Google Colab Research Drive
 \bcolab\.research\.google\.com/drive/[-0-9a-zA-Z_?=]*
 # GitHub SHAs (api)
 \bapi.github\.com/repos(?:/[^/\s"]+){3}/[0-9a-f]+\b
 # GitHub SHAs (markdown)
 (?:\[`?[0-9a-f]+`?\]\(https:/|)/(?:www\.|)github\.com(?:/[^/\s"]+){2,}(?:/[^/\s")]+)(?:[0-9a-f]+(?:[-0-9a-zA-Z/#.]*|)\b|)
 # GitHub SHAs
 \bgithub\.com(?:/[^/\s"]+){2}[@#][0-9a-f]+\b
 # GitHub wiki
 \bgithub\.com/(?:[^/]+/){2}wiki/(?:(?:[^/]+/|)_history|[^/]+(?:/_compare|)/[0-9a-f.]{40,})\b
 # githubusercontent
 /[-a-z0-9]+\.githubusercontent\.com/[-a-zA-Z0-9?&=_\/.]*
 # githubassets
 \bgithubassets.com/[0-9a-f]+(?:[-/\w.]+)
 # gist github
 \bgist\.github\.com/[^/\s"]+/[0-9a-f]+
 # git.io
 \bgit\.io/[0-9a-zA-Z]+
 # GitHub JSON
 "node_id": "[-a-zA-Z=;:/0-9+]*"
 # Contributor
 \[[^\]]+\]\(https://github\.com/[^/\s"]+\)
 # GHSA
 GHSA(?:-[0-9a-z]{4}){3}
 # GitLab commit
 \bgitlab\.[^/\s"]*/\S+/\S+/commit/[0-9a-f]{7,16}#[0-9a-f]{40}\b
 # GitLab merge requests
 \bgitlab\.[^/\s"]*/\S+/\S+/-/merge_requests/\d+/diffs#[0-9a-f]{40}\b
 # GitLab uploads
 \bgitlab\.[^/\s"]*/uploads/[-a-zA-Z=;:/0-9+]*
 # GitLab commits
 \bgitlab\.[^/\s"]*/(?:[^/\s"]+/){2}commits?/[0-9a-f]+\b
 # binanace
 accounts.binance.com/[a-z/]*oauth/authorize\?[-0-9a-zA-Z&%]*
 # bitbucket diff
 \bapi\.bitbucket\.org/\d+\.\d+/repositories/(?:[^/\s"]+/){2}diff(?:stat|)(?:/[^/\s"]+){2}:[0-9a-f]+
 # bitbucket repositories commits
 \bapi\.bitbucket\.org/\d+\.\d+/repositories/(?:[^/\s"]+/){2}commits?/[0-9a-f]+
 # bitbucket commits
 \bbitbucket\.org/(?:[^/\s"]+/){2}commits?/[0-9a-f]+
 # bit.ly
 \bbit\.ly/\w+
 # bitrise
 \bapp\.bitrise\.io/app/[0-9a-f]*/[\w.?=&]*
 # bootstrapcdn.com
 \bbootstrapcdn\.com/[-./\w]+
 # cdn.cloudflare.com
 \bcdnjs\.cloudflare\.com/[./\w]+
 # circleci
 \bcircleci\.com/gh(?:/[^/\s"]+){1,5}.[a-z]+\?[-0-9a-zA-Z=&]+
 # gitter
 \bgitter\.im(?:/[^/\s"]+){2}\?at=[0-9a-f]+
 # gravatar
 \bgravatar\.com/avatar/[0-9a-f]+
 # ibm
 [a-z.]*ibm\.com/[-_#=:%!?~.\\/\d\w]*
 # imgur
 \bimgur\.com/[^.]+
 # Internet Archive
 \barchive\.org/web/\d+/(?:[-\w.?,'/\\+&%$#_:]*)
 # discord
 /discord(?:app\.com|\.gg)/(?:invite/)?[a-zA-Z0-9]{7,}
 # Disqus
 \bdisqus\.com/[-\w/%.()!?&=_]*
 # medium link
 \blink\.medium\.com/[a-zA-Z0-9]+
 # medium
 \bmedium\.com/\@?[^/\s"]+/[-\w]+
 # microsoft
 \b(?:https?://|)(?:(?:download\.visualstudio|docs|msdn2?|research)\.microsoft|blogs\.msdn)\.com/[-_a-zA-Z0-9()=./%]*
 # powerbi
 \bapp\.powerbi\.com/reportEmbed/[^"' ]*
 # vs devops
 \bvisualstudio.com(?::443|)/[-\w/?=%&.]*
 # mvnrepository.com
 \bmvnrepository\.com/[-0-9a-z./]+
 # now.sh
 /[0-9a-z-.]+\.now\.sh\b
 # oracle
 \bdocs\.oracle\.com/[-0-9a-zA-Z./_?#&=]*
 # chromatic.com
 /\S+.chromatic.com\S*[")]
 # codacy
 \bapi\.codacy\.com/project/badge/Grade/[0-9a-f]+
 # compai
 \bcompai\.pub/v1/png/[0-9a-f]+
 # mailgun api
 \.api\.mailgun\.net/v3/domains/[0-9a-z]+\.mailgun.org/messages/[0-9a-zA-Z=@]*
 # mailgun
 \b[0-9a-z]+.mailgun.org
 # /message-id/
 /message-id/[-\w@./%]+
 # Reddit
 \breddit\.com/r/[/\w_]*
 # requestb.in
 \brequestb\.in/[0-9a-z]+
 # sched
 \b[a-z0-9]+\.sched\.com\b
 # Slack url
 slack://[a-zA-Z0-9?&=]+
 # Slack
 \bslack\.com/[-0-9a-zA-Z/_~?&=.]*
 # Slack edge
 \bslack-edge\.com/[-a-zA-Z0-9?&=%./]+
 # Slack images
 \bslack-imgs\.com/[-a-zA-Z0-9?&=%.]+
 # shields.io
 \bshields\.io/[-\w/%?=&.:+;,]*
 # stackexchange -- https://stackexchange.com/feeds/sites
 \b(?:askubuntu|serverfault|stack(?:exchange|overflow)|superuser).com/(?:questions/\w+/[-\w]+|a/)
 # Sentry
 [0-9a-f]{32}\@o\d+\.ingest\.sentry\.io\b
 # Twitter markdown
 \[\@[^[/\]:]*?\]\(https://twitter.com/[^/\s"')]*(?:/status/\d+(?:\?[-_0-9a-zA-Z&=]*|)|)\)
 # Twitter hashtag
 \btwitter\.com/hashtag/[\w?_=&]*
 # Twitter status
 \btwitter\.com/[^/\s"')]*(?:/status/\d+(?:\?[-_0-9a-zA-Z&=]*|)|)
 # Twitter profile images
 \btwimg\.com/profile_images/[_\w./]*
 # Twitter media
 \btwimg\.com/media/[-_\w./?=]*
 # Twitter link shortened
 \bt\.co/\w+
 # facebook
 \bfburl\.com/[0-9a-z_]+
 # facebook CDN
 \bfbcdn\.net/[\w/.,]*
 # facebook watch
 \bfb\.watch/[0-9A-Za-z]+
 # dropbox
 \bdropbox\.com/s/[^/\s"]+/[-0-9A-Za-z_.%]+
 # ipfs protocol
 ipfs://[0-9a-z]*
 # ipfs url
 /ipfs/[0-9a-z]*
 # w3
 \bw3\.org/[-0-9a-zA-Z/#.]+
 # loom
 \bloom\.com/embed/[0-9a-f]+
 # regex101
 \bregex101\.com/r/[^/\s"]+/\d+
 # figma
 \bfigma\.com/file(?:/[0-9a-zA-Z]+/)+
 # freecodecamp.org
 \bfreecodecamp\.org/[-\w/.]+
 # image.tmdb.org
 \bimage\.tmdb\.org/[/\w.]+
 # mermaid
 \bmermaid\.ink/img/[-\w]+|\bmermaid-js\.github\.io/mermaid-live-editor/#/edit/[-\w]+
 # gitweb
 [^"\s]+/gitweb/\S+;h=[0-9a-f]+
 # HyperKitty lists
 /archives/list/[^@/]+\@[^/\s"]*/message/[^/\s"]*/
 # lists
 /thread\.html/[^"\s]+
 # list-management
 \blist-manage\.com/subscribe(?:[?&](?:u|id)=[0-9a-f]+)+
 # kubectl.kubernetes.io/last-applied-configuration
 "kubectl.kubernetes.io/last-applied-configuration": ".*"
 # pgp
 \bgnupg\.net/pks/lookup[?&=0-9a-zA-Z]*
 # Spotify
 \bopen\.spotify\.com/embed/playlist/\w+
 # mastodon.social
 \bmastodon\.social/(?:media/|\@)[?&=0-9a-zA-Z]*
 # scastie
 \bscastie\.scala-lang\.org/[^/]+/\w+
 # images.unsplash.com
 \bimages\.unsplash\.com/(?:(?:flagged|reserve)/|)[-\w./%?=%&.;]+
 # pastebin
 \bpastebin\.com/[\w/]+
 # ANSI color codes
 (?:\\(?:u00|x)1b|\x1b)\[\d+(?:;\d+|)m
 # URL escaped characters
 \%[0-9A-F][A-F]
 # IPv6
 \b(?:[0-9a-fA-F]{0,4}:){3,7}[0-9a-fA-F]{0,4}\b
 # c99 hex digits (not the full format, just one I've seen)
 0x[0-9a-fA-F](?:\.[0-9a-fA-F]*|)[pP]
 # Punycode
 \bxn--[-0-9a-z]+
 # sha
 sha\d+:[0-9]*[a-f]{3,}[0-9a-f]*
 # sha-... -- uses a fancy capture
 (['"]|&quot;)[0-9a-f]{40,}\g{-1}
 # hex runs
 \b[0-9a-fA-F]{16,}\b
 # hex in url queries
 =[0-9a-fA-F]*?(?:[A-F]{3,}|[a-f]{3,})[0-9a-fA-F]*?&
 # ssh
 (?:ssh-\S+|-nistp256) [-a-zA-Z=;:/0-9+]{12,}
 # PGP
 \b(?:[0-9A-F]{4} ){9}[0-9A-F]{4}\b
 # uuid:
 \b[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}\b
 # hex digits including css/html color classes:
 (?:[\\0][xX]|\\u|[uU]\+|#x?|\%23)[0-9_]*[a-fA-FgGrR]{2,}[0-9_a-fA-FgGrR]*(?:[uUlL]{0,3}|u\d+)\b
 # integrity
 integrity="sha\d+-[-a-zA-Z=;:/0-9+]{40,}"
 # https://www.gnu.org/software/groff/manual/groff.html
 # man troff content
 \\f[BCIPR]
 # '
 \\\(aq
 # .desktop mime types
 ^MimeTypes?=.*$
 # .desktop localized entries
 ^[A-Z][a-z]+\[[a-z]+\]=.*$
 # IServiceProvider
 \bI(?=(?:[A-Z][a-z]{2,})+\b)
 # crypt
 "\$2[ayb]\$.{56}"
 # Input to GitHub JSON
 content: "[-a-zA-Z=;:/0-9+]*="
 # Python stringprefix / binaryprefix
 # Note that there's a high false positive rate, remove the `?=` and search for the regex to see if the matches seem like reasonable strings
 (?<!')\b(?:B|BR|Br|F|FR|Fr|R|RB|RF|Rb|Rf|U|UR|Ur|b|bR|br|f|fR|fr|r|rB|rF|rb|rf|u|uR|ur)'(?:[A-Z]{3,}|[A-Z][a-z]{2,}|[a-z]{3,})
 # Regular expressions for (P|p)assword
 \([A-Z]\|[a-z]\)[a-z]+
 # JavaScript regular expressions
 /.*/[gim]*\.test\(
 \.replace\(/[^/\s"]*/[gim]*\s*,
 # Go regular expressions
 regexp?\.MustCompile\(`[^`]*`\)
 # sed regular expressions
 sed 's/(?:[^/]*?[a-zA-Z]{3,}[^/]*?/){2}
 # kubernetes pod status lists
 # https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase
 \w+(?:-\w+)+\s+\d+/\d+\s+(?:Running|Pending|Succeeded|Failed|Unknown)\s+
 # kubectl - pods in CrashLoopBackOff
 \w+-[0-9a-f]+-\w+\s+\d+/\d+\s+CrashLoopBackOff\s+
 # kubernetes object suffix
 -[0-9a-f]{10}-\w{5}\s
 # posthog secrets
 posthog\.init\((['"])phc_[^"',]+\g{-1},
 # Update Lorem based on your content (requires `ge` and `w` from https://github.com/jsoref/spelling; and `review` from https://github.com/check-spelling/check-spelling/wiki/Looking-for-items-locally )
 # grep '^[^#].*lorem' .github/actions/spelling/patterns.txt|perl -pne 's/.*i..\?://;s/\).*//' |tr '|' "\n"|sort -f |xargs -n1 ge|perl -pne 's/^[^:]*://'|sort -u|w|sed -e 's/ .*//'|w|review -
 # Warning, while `(?i)` is very neat and fancy, if you have some binary files that aren't proper unicode, you might run into:
 ## Operation "substitution (s///)" returns its argument for non-Unicode code point 0x1C19AE (the code point will vary).
 ## You could manually change `(?i)X...` to use `[Xx]...`
 ## or you could add the files to your `excludes` file (a version after 0.0.19 should identify the file path)
 # Lorem
 (?:\w|\s|[,.])*\b(?i)(?:amet|consectetur|cursus|dolor|eros|ipsum|lacus|libero|ligula|lorem|magna|neque|nulla|suscipit|tempus)\b(?:\w|\s|[,.])*
 # Non-English
 [a-zA-Z]*[ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź][a-zA-Z]{3}[a-zA-ZÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝßàáâãäåæçèéêëìíîïðñòóôõöøùúûüýÿĀāŁłŃńŅņŒœŚśŠšŜŝŸŽžź]*
 # French
 # This corpus only had capital letters, but you probably want lowercase ones as well.
 \b[LN]'+[a-z]+\b
 # latex
 \\(?:n(?:ew|ormal)|r(?:enew)|t(?:able(?:of|)|he|itle))(?=[a-z]+)
 # the negative lookahead here is to allow catching 'templatesz' as a misspelling
 # but to otherwise recognize a Windows path with \templates\foo.template or similar:
 \\(?:necessary|r(?:eport|esolve[dr]?|esult)|t(?:arget|emplates?))(?![a-z])
 # ignore long runs of a single character:
 \b([A-Za-z])\g{-1}{3,}\b
 # Note that the next example is no longer necessary if you are using
 # to match a string starting with a `#`, use a character-class:
 [#]backwards
 # version suffix <word>v#
 (?:(?<=[A-Z]{2})V|(?<=[a-z]{2}|[A-Z]{2})v)\d+(?:\b|(?=[a-zA-Z_]))
 # Compiler flags (Scala)
 (?:^|[\t ,>"'`=(])-J-[DPWXY](?=[A-Z]{2,}|[A-Z][a-z]|[a-z]{2,})
 # Compiler flags
 (?:^|[\t ,"'`=(])-[DPWXYLlf](?=[A-Z]{2,}|[A-Z][a-z]|[a-z]{2,})
 # Compiler flags (linker)
 ,-B
 # curl arguments
 \b(?:\\n|)curl(?:\s+-[a-zA-Z]{1,2}\b)*(?:\s+-[a-zA-Z]{3,})(?:\s+-[a-zA-Z]+)*
 # set arguments
 \bset(?:\s+-[abefimouxE]{1,2})*\s+-[abefimouxE]{3,}(?:\s+-[abefimouxE]+)*
 # tar arguments
 \b(?:\\n|)g?tar(?:\.exe|)(?:(?:\s+--[-a-zA-Z]+|\s+-[a-zA-Z]+|\s[ABGJMOPRSUWZacdfh-pr-xz]+\b)(?:=[^ ]*|))+
 # tput arguments -- https://man7.org/linux/man-pages/man5/terminfo.5.html -- technically they can be more than 5 chars long...
 \btput\s+(?:(?:-[SV]|-T\s*\w+)\s+)*\w{3,5}\b
 # macOS temp folders
 /var/folders/\w\w/[+\w]+/(?:T|-Caches-)/
--- a/.github/actions/spelling/excludes.txt
+++ b/.github/actions/spelling/excludes.txt
@ -1,23 +1,59 @@
 # See https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples:-excludes
 (?:^|/)(?i)COPYRIGHT
 (?:^|/)(?i)LICEN[CS]E
 (?:^|/)go\.sum$
 (?:^|/)package(?:-lock|)\.json$
 (?:^|/)vendor/
 ignore$
 \.a$
 \.ai$
 \.avi$
 \.bmp$
 \.bz2$
 \.crt$
 \.dll$
 \.docx?$
 \.drawio$
 \.DS_Store$
 \.eot$
 \.exe$
 \.gif$
 \.gitattributes$
 \.graffle$
 \.gz$
 \.html$
 \.icns$
 \.ico$
 \.jar$
 \.jks$
 \.jpe?g$
 \.js$
 \.key$
 \.lib$
 \.lock$
 \.map$
-\.min\.
+\.min\..
 \.mod$
 \.mp[34]$
 \.nav$
 \.o$
 \.ocf$
 \.otf$
 \.pdf$
 \.pem$
 \.png$
 \.styl$
 \.psd$
 \.s$
 \.svg$
 \.tar$
 \.tiff?$
 \.ttf$
 \.uve$
 \.wav$
-\.html$
+\.webm$
-\.nav$
+\.webp$
 \.woff2?$
 \.zip$
 ^\.github/
 ^\Q.github/workflows/spelling.yml\E$
--- a/.github/actions/spelling/expect.txt
+++ b/.github/actions/spelling/expect.txt
@ -7,7 +7,6 @@ DLUAJIT
 exe
 flv
 gcc
 github
 gmail
 gunzip
 gzip
--- a/.github/actions/spelling/line_forbidden.patterns
+++ b/.github/actions/spelling/line_forbidden.patterns
@ -0,0 +1,56 @@
 # reject `m_data` as there's a certain OS which has evil defines that break things if it's used elsewhere
 # \bm_data\b
 # If you have a framework that uses `it()` for testing and `fit()` for debugging a specific test,
 # you might not want to check in code where you were debugging w/ `fit()`, in which case, you might want
 # to use this:
 #\bfit\(
 # s.b. GitHub
 \bGithub\b
 # s.b. GitLab
 \bGitlab\b
 # s.b. JavaScript
 \bJavascript\b
 # s.b. Microsoft
 \bMicroSoft\b
 # s.b. another
 \ban[- ]other\b
 # s.b. greater than
 \bgreater then\b
 # s.b. into
 \bin to\b
 # s.b. less than
 \bless then\b
 # s.b. otherwise
 \bother[- ]wise\b
 # s.b. nonexistent
 \bnon existing\b
 \b[Nn]o[nt][- ]existent\b
 # s.b. preexisting
 [Pp]re-existing
 # s.b. preempt
 [Pp]re-empt\b
 # s.b. preemptively
 [Pp]re-emptively
 # s.b. reentrancy
 [Rr]e-entrancy
 # s.b. reentrant
 [Rr]e-entrant
 # Reject duplicate words
 \s([A-Z]{3,}|[A-Z][a-z]{2,}|[a-z]{3,})\s\g{-1}\s
--- a/.github/actions/spelling/patterns.txt
+++ b/.github/actions/spelling/patterns.txt
@ -1,4 +1,18 @@
 # See https://github.com/check-spelling/check-spelling/wiki/Configuration-Examples:-patterns
 # acceptable duplicates
 # ls directory listings
 [-bcdlpsw](?:[-r][-w][-sx]){3}\s+\d+\s+(\S+)\s+\g{-1}\s+\d+\s+
 # C types
 \s(long|LONG) \g{-1}\s
 # javadoc / .net
 (?:[\\@](?:groupname|param)|(?:public|private)(?:\s+static|\s+readonly)*)\s+(\w+)\s+\g{-1}\s
 # Commit message -- Signed-off-by and friends
 ^\s*(?:(?:Based-on-patch|Co-authored|Helped|Mentored|Reported|Reviewed|Signed-off)-by|Thanks-to): (?:[^<]*<[^>]*>|[^<]*)\s*$
 # Autogenerated revert commit message
 ^This reverts commit [0-9a-f]{40}\.$
 # ignore long runs of a single character:
 \b([A-Za-z])\g{-1}{3,}\b
--- a/.github/actions/spelling/reject.txt
+++ b/.github/actions/spelling/reject.txt
@ -0,0 +1,10 @@
 ^attache$
 benefitting
 occurences?
 ^dependan.*
 ^oer$
 Sorce
 ^[Ss]pae.*
 ^untill$
 ^untilling$
 ^wether.*
--- a/.github/workflows/spelling.yml
+++ b/.github/workflows/spelling.yml
@ -1,31 +1,96 @@
 name: Spell checking
 # Updating pull request branches is managed via comment handling.
 # For details, see: https://github.com/check-spelling/check-spelling/wiki/Feature:-Update-expect-list
 #
 # These elements work together to make it happen:
 #
 # `on.issue_comment`
 #   This event listens to comments by users asking to update the metadata.
 #
 # `jobs.update`
 #   This job runs in response to an issue_comment and will push a new commit
 #   to update the spelling metadata.
 #
 # `with.experimental_apply_changes_via_bot`
 #   Tells the action to support and generate messages that enable it
 #   to make a commit to update the spelling metadata.
 #
 # `with.ssh_key`
 #   In order to trigger workflows when the commit is made, you can provide a
 #   secret (typically, a write-enabled github deploy key).
 #
 #   For background, see: https://github.com/check-spelling/check-spelling/wiki/Feature:-Update-with-deploy-key
 on:
  pull_request_target:
  push:
    branches: ["**"]
    tags-ignore: ["**"]
  pull_request_target:
  issue_comment:
    types: [created]
 jobs:
  spelling:
    name: Spell checking
    permissions:
      contents: read
      pull-requests: read
      actions: read
    outputs:
      followup: ${{ steps.spelling.outputs.followup }}
    runs-on: ubuntu-latest
    if: "contains(github.event_name, 'pull_request') || github.event_name == 'push'"
    concurrency:
      group: spelling-${{ github.event.pull_request.number || github.ref }}
      # note: If you use only_check_changed_files, you do not want cancel-in-progress
      cancel-in-progress: true
    steps:
-    - name: checkout-merge
+    - name: check-spelling
      if: "contains(github.event_name, 'pull_request')"
      uses: actions/checkout@v2
      with:
        ref: refs/pull/${{github.event.pull_request.number}}/merge
    - name: checkout
      if: ${{ github.event_name == 'push' ||
        (
          contains(github.event.comment.body, '@check-spelling-bot apply')
        ) }}
      uses: actions/checkout@v2
    - uses: check-spelling/check-spelling@main
      id: spelling
-      if: ${{ github.event_name != 'issue_comment' ||
+      uses: check-spelling/check-spelling@main
-        (
+      with:
-          contains(github.event.comment.body, '@check-spelling-bot apply')
+        suppress_push_for_open_pull_request: 1
-        ) }}
+        checkout: true
        post_comment: 0
        experimental_apply_changes_via_bot: 1
        extra_dictionaries:
          cspell:filetypes/filetypes.txt
  comment:
    name: Report
    runs-on: ubuntu-latest
    needs: spelling
    permissions:
      contents: write
      pull-requests: write
    if: (success() || failure()) && needs.spelling.outputs.followup
    steps:
    - name: comment
      uses: check-spelling/check-spelling@main
      with:
        checkout: true
        task: ${{ needs.spelling.outputs.followup }}
        experimental_apply_changes_via_bot: 1
  update:
    name: Update PR
    permissions:
      contents: write
      pull-requests: write
    runs-on: ubuntu-latest
    if: ${{
        github.event_name == 'issue_comment' &&
        github.event.issue.pull_request &&
        contains(github.event.comment.body, '@check-spelling-bot apply')
      }}
    concurrency:
      group: spelling-update-${{ github.event.issue.number }}
      cancel-in-progress: false
    steps:
    - name: apply spelling updates
      uses: check-spelling/check-spelling@main
      with:
        experimental_apply_changes_via_bot: 1
        checkout: true
        ssh_key: "${{ secrets.CHECK_SPELLING }}"