repos:

# prek builtin hooks: https://prek.j178.dev/builtin/#2-explicit-builtin-repository

- repo: builtin

hooks:

- id: trailing-whitespace

- id: end-of-file-fixer

- id: check-case-conflict

- id: check-executables-have-shebangs

- id: check-json

- id: check-json5

- id: pretty-format-json

- id: check-merge-conflict

- id: check-toml

- id: check-yaml

- id: detect-private-key

- repo: https://github.com/crate-ci/typos

rev: v1.44.0

hooks:

- id: typos

- repo: https://github.com/python-jsonschema/check-jsonschema

rev: 0.37.1

hooks:

- id: check-github-workflows

args: ["--verbose"]

- id: check-renovate

args: ["--verbose"]

additional_dependencies: ["json5"]

- repo: https://github.com/executablebooks/mdformat

rev: 1.0.0

hooks:

- id: mdformat

language: python

args: [--number, --compact-tables]

additional_dependencies:

- mdformat-gfm-alerts==2.0.0

- mdformat-gfm==1.0.0

- repo: https://github.com/DavidAnson/markdownlint-cli2

rev: v0.22.0

hooks:

- id: markdownlint-cli2

# zizmor detects security vulnerabilities in GitHub Actions workflows.

- repo: https://github.com/woodruffw/zizmor-pre-commit

rev: v1.23.1

hooks:

- id: zizmor

# actionlint for verifying correct syntax in GitHub Actions workflows.

- repo: https://github.com/rhysd/actionlint

rev: v1.7.11

hooks:

- id: actionlint

language: golang

additional_dependencies:

# actionlint has a shellcheck integration which extracts shell scripts in `run:` steps from GitHub Actions

# and checks these with shellcheck.

# see also: https://github.com/rhysd/actionlint/pull/482

- "github.com/wasilibs/go-shellcheck/cmd/[email protected]"

- repo: https://github.com/renovatebot/pre-commit-hooks

rev: 43.102.8

hooks:

- id: renovate-config-validator

args: ["--strict"]

files: ".*\\.json5$"