Summary

Integrates the typos spell checker into the CI pipeline as requested in #6532, with a comprehensive configuration that eliminates false positives.

/claim #6532

What’s Included

1. GitHub Actions Workflow (.github/workflows/typos.yaml)

• Runs on pushes to dev branch, all pull requests, and manual dispatch
• Uses crate-ci/typos@v1.43.3
• Includes concurrency control to cancel outdated runs

2. Configuration File (_typos.toml)

Comprehensive configuration that handles all false positives:

• File exclusions: Non-English translated READMEs (CN, ES, ID, JP, KR, PT-BR, TR), test data/fixtures, and WAF regex patterns
• Word exceptions:
  • CLI flag abbreviations (-hae, -ue, -ot, ines, ine)
  • SQL keywords in error messages (SELEC from “SELECTs”)
  • External dependency type names (Allowd from goflags)
  • Struct field names (Mis from MisMatched, Noo from NooP)
  • Base64/certificate data fragments (Iz, Iif, BA, UE, Iy, Fo, nd)
  • Test data content (alo, algoritmos)

3. Typo Fixes

Fixed all existing typos found by the tool:

• worflow_loader.go → workflow_loader.go (filename rename)
• seperate → separate (comments, 3 occurrences)
• fiter → filter (comment)
• splitted → parts (variable renaming for better clarity)
• PostReuestsHandlerRequest → PostRequestsHandlerRequest (comment)
• ExludedDastTmplStats → ExcludedDastTmplStats (constant name across 4 files)
• pannel → panel (integration test URL)
• thant → that (test comment)
• noticable → noticeable (integration test comment)
• formated/Formated → formatted/Formatted (variables and log message)

Key Improvements Over Competing PR

This implementation addresses the review feedback on PR #6845 where the reviewer noted “the action needs better configuration as it triggers spell errors on legitimate strings”:

1. Properly configured false positives: Added SELEC (SQL keyword) and Iz (base64 cert data) to prevent the CI failures seen in #6845
2. Clean CI run: All checks pass without false positives
3. Well-documented configuration: Each exception is clearly explained with context

Testing

Tested locally with typos . - all checks pass cleanly with zero false positives.

Reference

• Issue: #6532 ($100 bounty)
• Related PR: #6521 (earlier manual typo fixes)
• Competing PR: #6845 (has CI failures due to incomplete configuration)
• GitHub Action docs: https://github.com/crate-ci/typos/blob/master/docs/github-action.md

Checklist

• Pull request is created against the dev branch
• All typos fixed and typos checker passes locally
• Configuration file properly excludes false positives
• Code changes verified with make vet

Summary by CodeRabbit

• Bug Fixes

  • Corrected metric tracking for excluded DAST templates
  • Fixed path-processing naming inconsistencies
  • Fixed typos affecting server JSON output and POST payload fields

• Chores

  • Added spell-checker configuration to ignore non-English READMEs and extend accepted terms
  • Miscellaneous comment and test comment typo fixes