chore(deps-dev): Bump the linting group across 1 directory with 9 updates

[dependabot]

Bumps the linting group with 9 updates in the / directory:

Package	From	To
@typescript-eslint/eslint-plugin	8.48.1	8.53.1
@typescript-eslint/parser	8.48.1	8.53.1
eslint-plugin-better-tailwindcss	3.7.11	4.0.1
eslint-plugin-boundaries	5.3.0	5.3.1
eslint-plugin-jsdoc	61.4.1	62.2.0
eslint-plugin-n	17.23.1	17.23.2
eslint-plugin-perfectionist	4.15.1	5.3.1
eslint-plugin-prettier	5.5.4	5.5.5
lefthook	2.0.8	2.0.15

Updates @typescript-eslint/eslint-plugin from 8.48.1 to 8.53.1

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.53.1

8.53.1 (2026-01-19)

🩹 Fixes

• eslint-plugin: [consistent-indexed-object-style] skip fixer if interface is a default export (#11951)
• utils: make RuleCreator root defaultOptions optional (#11956)

❤️ Thank You

• Cameron
• Yukihiro Hasegawa @​y-hsgw

You can read about our versioning strategy and releases on our website.

v8.53.0

8.53.0 (2026-01-12)

🚀 Features

• eslint-plugin: [no-unused-vars] add a fixer to remove unused imports (#11922)
• eslint-plugin: add rule [strict-void-return] (#9707)
• project-service: allow passing Partial<ts.server.ServerHost> to project service (#11932)

🩹 Fixes

• eslint-plugin: replace unclear "error typed" with more helpful description (#11704)
• eslint-plugin: [no-useless-default-assignment] fix false positive for parameters corresponding to a rest parameter (#11916)
• typescript-estree: forbid type-only import with both default and named specifiers (#11930)
• typescript-estree: fix syntax check for using declaration (#11910)
• typescript-estree: forbid invalid class implements (#11934)
• typescript-estree: forbid invalid "import equals" declaration (#11936)
• typescript-estree: forbid invalid extends and implements in interface declaration (#11935)

❤️ Thank You

• auvred @​auvred
• Brad Zacher @​bradzacher
• fisker Cheung @​fisker
• Josh Goldberg
• Josh Goldberg ✨
• Kirk Waiblinger
• Niki @​phaux
• Nikita
• SungHyun627 @​SungHyun627
• Will Harney @​wjhsf

You can read about our versioning strategy and releases on our website.

v8.52.0

... (truncated)

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.53.1 (2026-01-19)

🩹 Fixes

• utils: make RuleCreator root defaultOptions optional (#11956)
• eslint-plugin: [consistent-indexed-object-style] skip fixer if interface is a default export (#11951)

❤️ Thank You

• Cameron
• Yukihiro Hasegawa @​y-hsgw

You can read about our versioning strategy and releases on our website.

8.53.0 (2026-01-12)

🚀 Features

• eslint-plugin: add rule [strict-void-return] (#9707)
• eslint-plugin: [no-unused-vars] add a fixer to remove unused imports (#11922)

🩹 Fixes

• eslint-plugin: [no-useless-default-assignment] fix false positive for parameters corresponding to a rest parameter (#11916)
• eslint-plugin: replace unclear "error typed" with more helpful description (#11704)
• typescript-estree: forbid invalid extends and implements in interface declaration (#11935)
• typescript-estree: forbid invalid class implements (#11934)
• typescript-estree: forbid type-only import with both default and named specifiers (#11930)

❤️ Thank You

• Brad Zacher @​bradzacher
• fisker Cheung @​fisker
• Josh Goldberg
• Josh Goldberg ✨
• Kirk Waiblinger
• Niki @​phaux
• Nikita
• SungHyun627 @​SungHyun627
• Will Harney @​wjhsf

You can read about our versioning strategy and releases on our website.

8.52.0 (2026-01-05)

🚀 Features

• eslint-plugin-internal: [no-multiple-lines-of-errors] add rule (#11899)

🩹 Fixes

... (truncated)

Commits

• 9940e53 chore(release): publish 8.53.1
• e0f2a01 fix(utils): make RuleCreator root defaultOptions optional (#11956)
• 76f8ff7 fix(eslint-plugin): [consistent-indexed-object-style] skip fixer if interface...
• 3021ede chore(release): publish 8.53.0
• 722ab62 fix(eslint-plugin): [no-useless-default-assignment] fix false positive for pa...
• 92fcf3e feat(eslint-plugin): add rule [strict-void-return] (#9707)
• 3fb0381 docs(eslint-plugin): [no-useless-default-assignment] fix misformatted link (#...
• 62ee26e feat(eslint-plugin): [no-unused-vars] add a fixer to remove unused imports (#...
• c4d5a56 fix(eslint-plugin): replace unclear "error typed" with more helpful descrip...
• 3ac7735 fix(typescript-estree): forbid invalid extends and implements in interfac...
• Additional commits viewable in compare view

Updates @typescript-eslint/parser from 8.48.1 to 8.53.1

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.53.1

8.53.1 (2026-01-19)

🩹 Fixes

• eslint-plugin: [consistent-indexed-object-style] skip fixer if interface is a default export (#11951)
• utils: make RuleCreator root defaultOptions optional (#11956)

❤️ Thank You

• Cameron
• Yukihiro Hasegawa @​y-hsgw

You can read about our versioning strategy and releases on our website.

v8.53.0

8.53.0 (2026-01-12)

🚀 Features

• eslint-plugin: [no-unused-vars] add a fixer to remove unused imports (#11922)
• eslint-plugin: add rule [strict-void-return] (#9707)
• project-service: allow passing Partial<ts.server.ServerHost> to project service (#11932)

🩹 Fixes

• eslint-plugin: replace unclear "error typed" with more helpful description (#11704)
• eslint-plugin: [no-useless-default-assignment] fix false positive for parameters corresponding to a rest parameter (#11916)
• typescript-estree: forbid type-only import with both default and named specifiers (#11930)
• typescript-estree: fix syntax check for using declaration (#11910)
• typescript-estree: forbid invalid class implements (#11934)
• typescript-estree: forbid invalid "import equals" declaration (#11936)
• typescript-estree: forbid invalid extends and implements in interface declaration (#11935)

❤️ Thank You

• auvred @​auvred
• Brad Zacher @​bradzacher
• fisker Cheung @​fisker
• Josh Goldberg
• Josh Goldberg ✨
• Kirk Waiblinger
• Niki @​phaux
• Nikita
• SungHyun627 @​SungHyun627
• Will Harney @​wjhsf

You can read about our versioning strategy and releases on our website.

v8.52.0

... (truncated)

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.53.1 (2026-01-19)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.53.0 (2026-01-12)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.52.0 (2026-01-05)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.51.0 (2025-12-29)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.50.1 (2025-12-22)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.50.0 (2025-12-15)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.49.0 (2025-12-08)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• 9940e53 chore(release): publish 8.53.1
• 3021ede chore(release): publish 8.53.0
• 9ddd571 chore(release): publish 8.52.0
• 95c7c73 chore: update deps to latest minor/patch (#11921)
• e4c57f5 chore(release): publish 8.51.0
• d520b88 chore(release): publish 8.50.1
• c62e858 chore(release): publish 8.50.0
• 864595a chore(release): publish 8.49.0
• 32b7e89 chore(deps): update dependency @​vitest/eslint-plugin to v1.5.1 (#11816)
• See full diff in compare view

Updates eslint-plugin-better-tailwindcss from 3.7.11 to 4.0.1

Release notes

Sourced from eslint-plugin-better-tailwindcss's releases.

v4.0.1

compare changes

Fixes

• Disallow extra properties in rule options (valibot schemas) (#295)
• Configuration warnings getting lost (#297)

❤️ Contributors

• Andrew Kazakov (@​andreww2012)

v4.0.0

This version includes a major rewrite of the internal architecture, improving performance and maintainability, resolving long-standing issues, and preparing the codebase for the future and for oxlint.

New Features

• New rule: enforce-canonical-classes (#232)
• New options for enforce-consistent-class-order to sort "component classes" and "unknown classes" (#263)
  • detectComponentClasses: boolean
  • componentClassOrder: "asc" | "desc" | "preserve"
  • componentClassPosition: "start" | "end"
  • unknownClassOrder: "asc" | "desc" | "preserve"
  • unknownClassPosition: "start" | "end"
• Added strictness: "loose" option to enforce-consistent-line-wrapping to improve interoperability with prettier (#260)
• Better Performance
• Oxlint support

⚠️ Breaking Changes

First of all, the minimum required Node.js version is has changed to support v23.0.0, v22.12.0, v20.19.0 to support require(esm)

• This made it possible to remove the CommonJS build (#264)

Some rules have been renamed to better reflect their intentions:

• Renamed rule no-unregistered-classes to no-unknown-classes
• Renamed rule sort-classes to enforce-consistent-class-order
• Renamed rule multiline to enforce-consistent-line-wrapping

The rule recommendations have been updated to enable new rules by default. Check the updated rule recommendations for more information.

For some rules, the options have been renamed or changed:

... (truncated)

Changelog

Sourced from eslint-plugin-better-tailwindcss's changelog.

v4.0.1

compare changes

Fixes

• Disallow extra properties in rule options (valibot schemas) (#295)
• Configuration warnings getting lost (#297)

❤️ Contributors

• Andrew Kazakov (@​andreww2012)

v4.0.0

compare changes

This version includes a major rewrite of the internal architecture, improving performance and maintainability, resolving long-standing issues, and preparing the codebase for the future and for oxlint.

New Features

• New rule: enforce-canonical-classes (#232)
• New options for enforce-consistent-class-order to sort "component classes" and "unknown classes" (#263)
  • detectComponentClasses: boolean
  • componentClassOrder: "asc" | "desc" | "preserve"
  • componentClassPosition: "start" | "end"
  • unknownClassOrder: "asc" | "desc" | "preserve"
  • unknownClassPosition: "start" | "end"
• Added strictness: "loose" option to enforce-consistent-line-wrapping to improve interoperability with prettier (#260)
• Better Performance
• Oxlint support

⚠️ Breaking Changes

First of all, the minimum required Node.js version is has changed to support v23.0.0, v22.12.0, v20.19.0 to support require(esm)

• This made it possible to remove the CommonJS build (#264)

Some rules have been renamed to better reflect their intentions:

• Renamed rule no-unregistered-classes to no-unknown-classes
• Renamed rule sort-classes to enforce-consistent-class-order
• Renamed rule multiline to enforce-consistent-line-wrapping

The rule recommendations have been updated to enable new rules by default. Check the updated rule recommendations for more information.

... (truncated)

Commits

• f83c5b4 chore(release): v4.0.1
• 9ddbeb3 Merge pull request #297 from schoero/fix/warnings-get-lost
• 0cfe4c4 fix: duplicate warnings
• 67ec0d7 Merge pull request #295 from andreww2012/fix/disallow-extra-properties-in-rul...
• 2cb9ae3 fix: warnings getting lost
• 733d959 fix: disallow extra properties in rule options (valibot schemas)
• e5a6ce4 docs: fix table of contents
• 1e9e8c6 docs: fix link
• c01d9f7 Merge pull request #265 from schoero/v4
• f88659d chore: prepare v4 release
• Additional commits viewable in compare view

Updates eslint-plugin-boundaries from 5.3.0 to 5.3.1

Release notes

Sourced from eslint-plugin-boundaries's releases.

Fix elements selector validation

@​boundaries/eslint-plugin v5.3.1

Fixed

• fix(#415): Fix elements selector validation error when selector is an empty array

@​boundaries/elements v1.1.2

Fixed

• fix: Update HANDLEBARS_TEMPLATE_REGEX to fix vulnerability with regex denial of service (ReDoS) attacks.

chore

Changed

• chore: Bump pnpm to 10. Set pnpm security options. Detect shai-hulud dependencies in workflow
• chore: bump baseline-browser-mapping to supress warnings

Commits

• 157710a Release v5.3.1 (#418)
• c841187 docs: Change Algolia links (#414)
• 6d8de3b docs: Change web page titles. Add releases page content (#413)
• 932490a docs: Improve website README (#412)
• aa5c1ef feat: Documentation Website (#410)
• See full diff in compare view

Updates eslint-plugin-jsdoc from 61.4.1 to 62.2.0

Release notes

Sourced from eslint-plugin-jsdoc's releases.

v62.2.0

62.2.0 (2026-01-19)

Features

• no-undefined-types: support strict validation for TS namespaces (#1616) (ed260c5)

v62.1.0

62.1.0 (2026-01-17)

Features

• update comment-parser; fixes #1116 ; fixes #1348 (0170773)

v62.0.1

62.0.1 (2026-01-17)

Bug Fixes

• require-template: treat infer statement types as defined; fixes #1628 (e63dc23)

v62.0.0

62.0.0 (2026-01-09)

Features

• update jsdoccomment, allowing for skipInvokedExpressionsForCommentFinding setting; fixes #1624 (9c0e4a3)

BREAKING CHANGES

• Require Node ^20.19.0 || ^22.13.0 || >=24

v61.7.1

61.7.1 (2026-01-08)

Bug Fixes

• github: npm release (#1623) (fe29ef9)

v61.7.0

61.7.0 (2026-01-05)

Features

... (truncated)

Commits

• ed260c5 feat(no-undefined-types): support strict validation for TS namespaces (#1616)
• 0170773 feat: update comment-parser; fixes #1116 ; fixes #1348
• e63dc23 fix(require-template): treat infer statement types as defined; fixes #1628
• 9c0e4a3 feat: update jsdoccomment, allowing for `skipInvokedExpressionsForCommentFind...
• a530471 chore: update actions
• fe29ef9 fix(github): npm release (#1623)
• 31d6e22 feat: update esquery and devDeps.
• 3b5b52d chore: adopt trusted publisher
• 4527be2 chore: update devDeps.
• f013e19 fix(check-property-names): allow separate typedefs; fixes #1619
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for eslint-plugin-jsdoc since your current version.

Updates eslint-plugin-n from 17.23.1 to 17.23.2

Release notes

Sourced from eslint-plugin-n's releases.

v17.23.2

17.23.2 (2026-01-13)

🩹 Fixes

• avoid any type for no-top-level-await listener node (build issue) (#498) (f071703)
• file-extension-in-import: handle directory index imports (#499) (754a1a6)
• file-extension-in-import: handle files with dots in basename (#506) (600f3f2)
• no-sync: resolve full typed names for ignores (#501) (047301a)

📚 Documentation

• safely disable no-unpublished-bin npm v10+ (#487) (8af9c86)

🧹 Chores

• no-missing-import: align fixture message with latest resolver output (#500) (a3719d2)

Changelog

Sourced from eslint-plugin-n's changelog.

17.23.2 (2026-01-13)

🩹 Fixes

• avoid any type for no-top-level-await listener node (build issue) (#498) (f071703)
• file-extension-in-import: handle directory index imports (#499) (754a1a6)
• file-extension-in-import: handle files with dots in basename (#506) (600f3f2)
• no-sync: resolve full typed names for ignores (#501) (047301a)

📚 Documentation

• safely disable no-unpublished-bin npm v10+ (#487) (8af9c86)

🧹 Chores

• no-missing-import: align fixture message with latest resolver output (#500) (a3719d2)

Commits

• 7541d64 chore(master): release 17.23.2 (#488)
• 600f3f2 fix(file-extension-in-import): handle files with dots in basename (#506)
• 754a1a6 fix(file-extension-in-import): handle directory index imports (#499)
• 047301a fix(no-sync): resolve full typed names for ignores (#501)
• f071703 fix: avoid any type for no-top-level-await listener node (build issue) (#498)
• a3719d2 test(no-missing-import): align fixture message with latest resolver output (#...
• d27b585 ci: trusted publishing (#492)
• 8af9c86 docs: safely disable no-unpublished-bin npm v10+ (#487)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for eslint-plugin-n since your current version.

Updates eslint-plugin-perfectionist from 4.15.1 to 5.3.1

Release notes

Sourced from eslint-plugin-perfectionist's releases.

v5.3.1

   🐞 Bug Fixes

• Align plugin configs typing with eslint  -  by @​azat-io (7c44d)

    View changes on GitHub

v5.3.0

   🚀 Features

• Fallback sort subgroup order  -  by @​Lievesley (3c8fe)
• sort-modules: Allow exported then decorated classes to be sorted  -  by @​hugop95 (53b00)

   🐞 Bug Fixes

• Use runtime-safe node type checks  -  by @​hugop95 (a0ec1)

    View changes on GitHub

v5.2.0

   🚀 Features

• Allow fallback sort override in groups with overrides  -  by @​hugop95 (64a9f)
• sort-imports: Allow sorting by specifiers  -  by @​hugop95 (05c66)
• sort-modules: Sort by order of use  -  by @​hugop95 (fc297)

   🐞 Bug Fixes

• Add explicit type annotation for plugin configs  -  by @​azat-io (780a2)

    View changes on GitHub

v5.1.0

   🚀 Features

• Add new lines between to settings  -  by @​hugop95 (ae368)
• Add new lines inside at rule options and settings level  -  by @​hugop95 (1430b)

   🐞 Bug Fixes

• Add js extensions to relative imports in decl files  -  by @​azat-io (2cfee)
• Handle missing export kind in sort exports  -  by @​azat-io (179d4)
• Allow overriding settings with default values  -  by @​azat-io (08d69)
• Improve plugin type compatibility  -  by @​azat-io (af1ce)

    View changes on GitHub

v5.0.0

   🚨 Breaking Changes

... (truncated)

Changelog

Sourced from eslint-plugin-perfectionist's changelog.

v5.3.1

compare changes

🐞 Bug Fixes

• Align plugin configs typing with eslint (7c44de3)

❤️ Contributors

• Azat S. (@​azat-io)

v5.3.0

compare changes

🚀 Features

• Fallback sort subgroup order (3c8fecf)
• sort-modules: Allow exported then decorated classes to be sorted (53b00c8)

🐞 Bug Fixes

• Use runtime-safe node type checks (a0ec110)

❤️ Contributors

• Hugo (@​hugop95)
• Sam (@​Lievesley)

v5.2.0

compare changes

🚀 Features

• sort-modules: Sort by order of use (fc297a2)
• Allow fallback sort override in groups with overrides (64a9fee)
• sort-imports: Allow sorting by specifiers (05c66aa)

🐞 Bug Fixes

• Add explicit type annotation for plugin configs (780a25a)

❤️ Contributors

• Hugo (@​hugop95)
• Azat S. (@​azat-io)

v5.1.0

... (truncated)

Commits

• 0c2593f build: publish v5.3.1
• 7c44de3 fix: align plugin configs typing with eslint
• 271a481 build: publish v5.3.0
• 0df94ab chore: update dependencies
• 53b00c8 feat(sort-modules): allow exported then decorated classes to be sorted
• 845fa80 refactor: general typing improvements
• 6c8dd0a refactor(sort-classes): improve readability
• 8435721 docs: fix minor discrepancies
• 3c8fecf feat: fallback sort subgroup order
• de28a71 docs: add missing fallback sort documentation
• Additional commits viewable in compare view

Updates eslint-plugin-prettier from 5.5.4 to 5.5.5

Release notes

Sourced from eslint-plugin-prettier's releases.

v5.5.5

Patch Changes

• #772 7264ed0 Thanks @​BPScott! - Bump prettier-linter-helpers dependency to v1.0.1

• #776 77651a3 Thanks @​aswils! - fix: bump synckit for yarn PnP ESM issue

Changelog

Sourced from eslint-plugin-prettier's changelog.

5.5.5

Patch Changes

• #772 7264ed0 Thanks @​BPScott! - Bump prettier-linter-helpers dependency to v1.0.1

• #776 77651a3 Thanks @​aswils! - fix: bump synckit for yarn PnP ESM issue

Commits

• e2c154a chore: release eslint-plugin-prettier (#773)
• 6795c1a build(deps): Bump the actions group across 1 directory with 2 updates (#774)
• 77651a3 fix: bump synckit for yarn PnP ESM issue (#776)
• 7264ed0 chore: bump prettier-linter-helpers to v1.0.1 (#772)
• e11a5b7 build(deps): Bump the actions group across 1 directory with 3 updates (#769)
• befda88 ci: enable trusted publishing (#757)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for eslint-plugin-prettier since your current version.

Updates lefthook from 2.0.8 to 2.0.15

Release notes

Sourced from lefthook's releases.

v2.0.15

Changelog

• f8dc321dd3ed3b7bdcad622a4011a268a63451e3 feat: skip scripts if args given with empty file template (#1277)

v2.0.14

Changelog

• 037fcdca819684123dc1c62df1d14f4402b1e245 deps: December 2025 (#1209)
• e80f8927482b638bcd068136d3624d5adc83f0b2 deps: switch from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#1261)
• 87350d63c401c47b9260d0023c7640e3885e0202 feat: add jsonc support (#1274)
• 882159f29f83b1f4f175ed5116ac48c631639deb fix: don't install custom hooks to hooks dir (#1246)
• 2bcab48ec33b2bf57e1a981734a73be4ea0a10ed fix: skip if any files template is empty (#1275)

v2.0.13

Changelog

• 009da6884b03e65c7d920ff0fd8ea53a49de6929 chore: add more tests (#1244)
• ab93c17f526d064a169fca6cc6df42807b8737b4 docs(output): remove duplicate config: false description (#1245)
• 862908827582ffe87483692b963c5ad8fec3ef71 fix: allow custom hooks in JSON schema by updating generator (#1250)
• aeb326c728cf1b86e5ea60b2138f498954792590 fix: set extends to empty slice after loading remotes (#1259)

v2.0.12

Changelog

• 303e3f7f27239baf5e04ff27d70fb466a97ed87f chore: small changes on diff printing (#1242)
• a4223e947ffb0a704bc14c11c3c35661ec20b62f feat: ability to show diff when failing on changes (#1227)
• 2b4c717882bb3a1254744a4d3a40408fc8ee7404 fix(git): make short status parser more robust (#1236)

v2.0.11

Changelog

• dcb45c027230c883f3b9a360896708aa9d6b50a3 ci: npm trusted publishing (#1234)
• fd62bbb6586477b7d090e356c27f8a9e987c82a3 feat: more rudimentary shell completions (#1230)
• f7bfafdd87868ea85de46c87802ab53278b77f67 feat: refetch and cleanup on ref change (#1210)

v2.0.10

Changelog

• b3791f6b3abdbea78b7c43ef85e0d3ededb69a15 feat: add no_auto_install to lefthook.yml (#1231)
• 1f7303df83e2af58015292986ebe2b8177c77667 fix: skip if empty files template (#1233)

v2.0.9

Changelog

• d2fa5d9f31c57a79d2354654de1939272006fc88 chore: remove unnecessary .svg executable permissions (#1219)
• 0792c2c03a98c306fd9fd762040e9f1d237fb1b1 chore: upgrade golangci-lint to 2.7.1, add godoclint (#1223)
• 0b9f1936ddf18488cb95078e7a3a6f85724a3878 fix: check and report Scanner errors (#1222)
• 97a7399c008be5e646538317f1701a1613be587a fix: do not try to hash-object directories (#1220)
• 16fe016a8e25f9b4d15aa2848fb516d4842618be fix: improve separation of options and filenames for more git commands (#1225)
• 07c5ccbd254cdad1135c260ac797191709382560 fix: skip pre commit hook if no staged files (#1229)
• 98699c83d34fc36fa4f29d669a0ab4f3ec48d991 refactor: command executor tweaks (#1224)
• 76cc6de4fd048d1de4ec4bc45930e780fd7e549a refactor: remove some redundant code (#1221)

Changelog

Sourced from lefthook's changelog.

2.0.15 (2026-01-13)

• docs: clarify remote settings (#1260) by @​mrexox
• feat: skip scripts if args given with empty file template (#1277) by @​mrexox

2.0.14 (2026-01-12)

• fix: skip if any files template is empty (#1275) by @​mrexox
• feat: add jsonc support (#1274) by @​mrexox
• deps: switch from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (

[dependabot]

Labels

The following labels could not be found: automated. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[trunk-io]

Merging to main in this repository is managed by Trunk.

• To merge this pull request, check the box to the left or comment /trunk merge below.

[cloudflare-workers-and-pages]

Deploying with    Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status	Name	Latest Commit	Updated (UTC)
❌ Deployment failed View logs	claudepro-directory-web-prd	f8b0ba2	Jan 19 2026, 07:00 PM

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)

See the Details below.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@babel/code-frame	7.28.6	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/30 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 2 badge detected: InProgress Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 33 existing vulnerabilities detected
npm/@babel/runtime	7.28.6	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/30 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 2 badge detected: InProgress Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 33 existing vulnerabilities detected
npm/@boundaries/elements	1.1.2	🟢 4.6	Details Check Score Reason Code-Review ⚠️ 0 Found 2/21 approved changesets -- score normalized to 0 Maintained 🟢 10 8 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST 🟢 7 SAST tool is not run on all commits -- score normalized to 7 Vulnerabilities 🟢 3 7 existing vulnerabilities detected
npm/@es-joy/jsdoccomment	0.81.0	Unknown	Unknown
npm/@eslint-community/eslint-utils	4.9.1	Unknown	Unknown
npm/@typescript-eslint/eslint-plugin	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/parser	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/project-service	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/scope-manager	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/tsconfig-utils	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/type-utils	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/types	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/typescript-estree	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/utils	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@typescript-eslint/visitor-keys	8.53.1	🟢 5.3	Details Check Score Reason Code-Review 🟢 8 Found 21/26 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 38 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@valibot/to-json-schema	1.5.0	Unknown	Unknown
npm/comment-parser	1.4.4	Unknown	Unknown
npm/enhanced-resolve	5.18.4	🟢 6.6	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 7 4 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 7 Code-Review 🟢 3 Found 7/21 approved changesets -- score normalized to 3 Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint-plugin-better-tailwindcss	4.0.1	Unknown	Unknown
npm/eslint-plugin-boundaries	5.3.1	🟢 4.6	Details Check Score Reason Code-Review ⚠️ 0 Found 2/21 approved changesets -- score normalized to 0 Maintained 🟢 10 8 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST 🟢 7 SAST tool is not run on all commits -- score normalized to 7 Vulnerabilities 🟢 3 7 existing vulnerabilities detected
npm/eslint-plugin-jsdoc	62.2.0	🟢 4.9	Details Check Score Reason Code-Review ⚠️ 2 Found 4/17 approved changesets -- score normalized to 2 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 License 🟢 9 license file detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Packaging 🟢 10 packaging workflow detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 6 4 existing vulnerabilities detected
npm/eslint-plugin-n	17.23.2	Unknown	Unknown
npm/eslint-plugin-perfectionist	5.3.1	Unknown	Unknown
npm/eslint-plugin-prettier	5.5.5	🟢 5.3	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 3 Found 5/16 approved changesets -- score normalized to 3 Maintained 🟢 6 6 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 6 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies 🟢 7 dependency not pinned by hash detected -- score normalized to 7 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Vulnerabilities 🟢 4 6 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint-visitor-keys	5.0.0	Unknown	Unknown
npm/espree	11.1.0	Unknown	Unknown
npm/esquery	1.7.0	🟢 4.5	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review 🟢 5 Found 8/14 approved changesets -- score normalized to 5 Maintained ⚠️ 2 2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2 Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/jsdoc-type-pratt-parser	7.0.0	Unknown	Unknown
npm/lefthook	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-darwin-arm64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-darwin-x64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-freebsd-arm64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-freebsd-x64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-linux-arm64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-linux-x64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-openbsd-arm64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-openbsd-x64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-windows-arm64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/lefthook-windows-x64	2.0.15	🟢 5.6	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 3 Found 11/30 approved changesets -- score normalized to 3 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/prettier-linter-helpers	1.0.1	🟢 5.2	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review ⚠️ 0 Found 0/11 approved changesets -- score normalized to 0 Pinned-Dependencies 🟢 10 all dependencies are pinned Binary-Artifacts 🟢 10 no binaries found in the repo Maintained 🟢 6 8 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 6 Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Vulnerabilities 🟢 10 0 existing vulnerabilities detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Security-Policy 🟢 10 security policy file detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/synckit	0.11.12	Unknown	Unknown
npm/ts-api-utils	2.4.0	Unknown	Unknown
npm/valibot	1.2.0	Unknown	Unknown

Scanned Files

• pnpm-lock.yaml

[netlify]

❌ Deploy Preview for heyclaude failed.

Name	Link
🔨 Latest commit	f8b0ba2
🔍 Latest deploy log	https://app.netlify.com/projects/heyclaude/deploys/696e7f1bb5869c0008b75de5