# Dockerfile Best Practice Linters > Search results for `lint Dockerfiles for best practices and mistakes` on awesome-repositories.com. 112 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/lint-dockerfiles-for-best-practices-and-mistakes **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/lint-dockerfiles-for-best-practices-and-mistakes).** ## Results - [goldbergyoni/javascript-testing-best-practices](https://awesome-repositories.com/repository/goldbergyoni-javascript-testing-best-practices.md) (24,589 ⭐) — This project is a comprehensive knowledge base and educational resource for JavaScript developers, focused on establishing industry-standard methodologies for automated software testing. It provides a structured collection of design patterns and actionable guidelines designed to improve code reliability, maintainability, and overall software quality across the development lifecycle. The repository distinguishes itself by offering a granular, pattern-based approach to testing that spans unit, integration, and end-to-end verification. It emphasizes specific architectural strategies such as component-level isolation, contract-based integration testing, and the use of mutation testing to validate the effectiveness of test suites. By advocating for practices like the Arrange-Act-Assert pattern and black-box testing, it helps teams standardize their workflows and reduce regressions. Beyond core testing strategies, the resource covers a broad capability surface including continuous integration optimization, static analysis integration, and frontend component validation. It provides guidance on managing test data, configuring production-like CI pipelines, and maintaining high standards through automated quality assurance and dependency management. The documentation is organized into categorized, actionable design patterns that serve as a centralized reference for engineering teams. It includes technical examples and best practices for handling asynchronous events, network interactions, and environment-specific configuration issues. - [dbt-labs/dbt-core](https://awesome-repositories.com/repository/dbt-labs-dbt-core.md) (13,051 ⭐) — dbt-core is a command-line framework for transforming data within a warehouse using modular SQL and version control. It functions as a data transformation engine that enables users to define data structures and business logic through declarative configuration files, which the system then compiles into executable code. By managing complex data dependencies through a directed acyclic graph, it ensures that transformation tasks execute in the correct order while maintaining a manifest-driven state to track lineage and execution history. The project distinguishes itself through an adapter-based database abstraction that translates generic transformation commands into dialect-specific SQL for various data warehouses. It utilizes a template engine to dynamically generate and inject SQL logic at runtime, allowing for highly flexible and reusable transformation scripts. Furthermore, it supports an incremental materialization strategy that optimizes performance by processing only new or changed records, merging them into existing tables using unique keys to reduce compute costs. The framework covers the entire lifecycle of data transformation, including development, testing, deployment, and monitoring. It provides comprehensive capabilities for managing data lineage, enforcing code quality through automated linting and testing, and orchestrating complex pipelines across distributed environments. Users can also leverage a centralized semantic layer to define and govern business metrics, ensuring consistent data reporting across diverse analytical tools. The project is distributed as a Python-based tool, providing a unified interface for local development that integrates with version control systems and cloud-based configuration management. - [cpp-best-practices/cppbestpractices](https://awesome-repositories.com/repository/cpp-best-practices-cppbestpractices.md) (8,766 ⭐) — This project is a curated collection of guidelines and technical resources designed to improve C++ code safety, maintainability, and performance. It provides a comprehensive set of coding standards and best practices for establishing consistent naming, formatting, and structural patterns across C++ codebases. The guide offers specific technical advice on performance optimization, including methods for minimizing object copying, optimizing memory allocation, and reducing compilation cycles. It also provides a directory of tooling recommendations for implementing static analysis, fuzz testing, and binary size profiling. The resource covers a broad range of capability areas, including memory management patterns, concurrency and multi-threading strategies, and cross-platform portability. It further addresses software quality assurance through debugging, testing methodologies, and build system configuration. - [futurice/android-best-practices](https://awesome-repositories.com/repository/futurice-android-best-practices.md) (20,754 ⭐) — This project provides a comprehensive set of architectural patterns, build configurations, and quality standards for developing maintainable and scalable Android applications. It serves as a guide for organizing mobile application code into feature-based modules to improve encapsulation and simplify navigation, while establishing a framework for standardizing build processes and dependency management across development environments. The repository distinguishes itself by offering strategies for integrating automated quality assurance, including unit testing, static code analysis, and performance monitoring, directly into the development lifecycle. It emphasizes the use of build variants and automated code shrinking to optimize production releases, ensuring that applications remain performant and compact. The framework covers a broad range of operational capabilities, including centralized resource management for visual consistency and the implementation of automated build pipelines to ensure repeatable releases. These practices facilitate the use of development-time inspection hooks to monitor network traffic, database state, and memory usage, allowing for the identification of performance bottlenecks during the development process. - [continuedev/continue](https://awesome-repositories.com/repository/continuedev-continue.md) (33,716 ⭐) — Continue is an automated code review platform that integrates AI agents directly into the software development lifecycle. By executing custom validation rules against pull request diffs, it provides immediate feedback through repository status checks, allowing teams to enforce quality, security, and documentation standards before manual review begins. The system distinguishes itself through a file-based configuration model where validation logic is defined in version-controlled markdown files. These files act as system prompts that guide autonomous agents in evaluating code changes. This approach enables agentic task chaining, where specialized workflows—such as security scanning, test coverage validation, and UI rendering verification—are orchestrated to analyze code against project-specific criteria. Beyond automated reviews, the platform includes a local-first execution engine that allows developers to run and refine these checks from the command line before committing changes. The system also incorporates a feedback loop that tracks user acceptance and rejection of suggestions, enabling the refinement of check logic over time to reduce noise and improve the accuracy of automated findings. The project provides a command-line interface for managing these workflows and integrates with repository webhooks to trigger analysis automatically upon pull request submission. - [bodadotsh/npm-security-best-practices](https://awesome-repositories.com/repository/bodadotsh-npm-security-best-practices.md) (761 ⭐) — This project provides a comprehensive guide for securing the software supply chain within Node.js and npm environments. It focuses on hardening the entire lifecycle of third-party dependencies and package publishing processes to protect applications from malicious code injection and unauthorized registry modifications. The guide distinguishes itself by emphasizing identity-based authentication and cryptographic provenance to verify the origin of distributed artifacts. It advocates for strict governance policies, such as enforcing minimum release ages for dependencies and disabling automatic lifecycle scripts, to mitigate risks associated with newly published or untrusted code. The documentation covers a broad range of security practices, including deterministic dependency resolution through lockfiles, granular access control for registry tokens, and automated vulnerability auditing. It also details methods for minimizing the attack surface by restricting published files and overriding transitive dependencies to ensure consistent, predictable builds across development and production environments. - [analysis-tools-dev/static-analysis](https://awesome-repositories.com/repository/analysis-tools-dev-static-analysis.md) (14,389 ⭐) — This project is a comprehensive, curated directory of static analysis, linting, and security scanning utilities. It serves as a central resource for developers to discover, compare, and select tools based on specific programming languages, licensing models, and integration requirements. The directory distinguishes itself by providing deep metadata for each listed utility, including community-driven popularity rankings, maintenance status, and deployment methods. By aggregating these tools into a single searchable index, it enables teams to identify solutions for enforcing coding standards, managing technical debt, and auditing software supply chain security. The collection covers a broad spectrum of analysis capabilities, ranging from automated code refactoring and structural transformation to formal verification and database schema analysis. It also includes resources for orchestrating multiple linters within development workflows, visualizing code metrics, and performing security compliance audits across diverse repositories. - [mattdesl/module-best-practices](https://awesome-repositories.com/repository/mattdesl-module-best-practices.md) (1,545 ⭐) — :books: some best practices for JS modules - [docker-slim/docker-slim](https://awesome-repositories.com/repository/docker-slim-docker-slim.md) (23,311 ⭐) — This project is a suite of specialized tools for linting, minifying, analyzing, and managing container images and their associated registries. It provides a set of utilities including an image minifier to reduce image size, a security profiler to harden running containers, an image analyzer for static inspection, and a registry manager for organizing multi-architecture indices. The toolset distinguishes itself through behavior-based optimization and security. It uses dynamic analysis to track executed instructions and file access to remove unused binary data, and records kernel interactions to generate restrictive system call profiles. It also employs HTTP probing to discover dynamically loaded components by crawling exposed web ports. The broader capability surface includes static Dockerfile linting, container image merging, and vulnerability analysis to assess threat levels within an image. It further supports troubleshooting workflows via interactive sidecar container debugging and multi-architecture registry synchronization across cloud and local environments. - [goldbergyoni/nodebestpractices](https://awesome-repositories.com/repository/goldbergyoni-nodebestpractices.md) (105,356 ⭐) — This project provides a comprehensive collection of industry-standard guidelines for developing, testing, and deploying Node.js applications. It covers the entire software lifecycle, offering actionable advice on code style, architectural patterns, and security measures to ensure maintainability and consistency across large-scale codebases. The documentation details strategies for robust error management, containerization, and production readiness. It addresses operational requirements such as observability, scalability, and infrastructure configuration, while providing specific methodologies for validating software quality through automated testing and dependency management. - [moonrepo/moon](https://awesome-repositories.com/repository/moonrepo-moon.md) (3,687 ⭐) — Moon is a monorepo build system and task runner designed to orchestrate complex projects with multiple packages. It functions as a dependency graph orchestrator that executes build targets in topological order and utilizes input hashing to cache results and skip redundant work. The project features a polyglot toolchain manager that automates the installation and versioning of language runtimes and CLI tools to ensure environment consistency. It also includes a plugin framework based on WebAssembly, allowing developers to extend build logic and toolchain behavior using any supported language. The system covers a broad range of capabilities, including incremental build execution, CI pipeline optimization via task sharding and affected-target filtering, and the generation of optimized multi-stage Dockerfiles. It further provides tools for repository governance through code ownership management and the automation of version control hooks. The tool provides interface servers that enable AI agents to query project state, trigger build tasks, and manage toolchain configurations. - [in28minutes/java-best-practices](https://awesome-repositories.com/repository/in28minutes-java-best-practices.md) (1,443 ⭐) — Best practices in Coding, Designing and Architecting Java Applications - [docker-library/official-images](https://awesome-repositories.com/repository/docker-library-official-images.md) (6,972 ⭐) — This project is a collection of curated and standardized Docker base images that serve as reliable starting points for building containerized applications. It functions as an OCI container image repository and a build template library, providing a central source of truth for images that adhere to Open Container Initiative standards for portability. The project utilizes an automated image lifecycle pipeline to build, tag, and push images, ensuring that dependencies remain current and security patches are applied. It specifically supports cross-platform distribution by providing a multi-architecture image set, using image indexes to map a single tag to multiple hardware platforms. The repository covers several high-level capability areas, including container security hardening through the restriction of process privileges and the use of non-root users. It also manages container runtime configuration via entrypoints and health checks, and employs image optimization techniques such as multi-stage builds to reduce the final image footprint. - [langchain-ai/deepagents](https://awesome-repositories.com/repository/langchain-ai-deepagents.md) (25,006 ⭐) — Deepagents is an LLM agent orchestration platform and stateful application server designed for deploying and managing AI agents built with computational graphs. It provides a containerized runtime environment that handles agent execution, state persistence, and the versioning of AI assistants. The platform distinguishes itself through deep integration with the Model Context Protocol, allowing agents to function as servers that expose tools and capabilities to external clients. It features a sophisticated observability suite for capturing execution traces, performing LLM-based evaluations against datasets, and conducting side-by-side model output comparisons. The system covers a broad range of operational capabilities, including cron-based task scheduling, multi-tenant workspace isolation, and human-in-the-loop review workflows. It also manages long-term memory through semantic search and provides automated scaling of compute resources across cloud environments. A command-line interface is provided for local agent validation, graph packaging, and rapid testing via a local development server. - [jehna/readme-best-practices](https://awesome-repositories.com/repository/jehna-readme-best-practices.md) (940 ⭐) — Best practices for writing a README for your open source project - [bazelbuild/bazel](https://awesome-repositories.com/repository/bazelbuild-bazel.md) (25,529 ⭐) — Bazel is a multi-language build automation engine designed to manage complex dependency graphs and execute compilation tasks for massive codebases. It functions as a hermetic build environment, utilizing sandboxed execution and content-addressable caching to ensure that build artifacts are reproducible and that identical tasks are never re-executed. By modeling dependencies as a directed acyclic graph, the system determines optimal execution order and identifies tasks that can run in parallel. The project distinguishes itself through its support for distributed build execution, allowing resource-intensive compilation and testing to be offloaded to remote computing clusters. It further optimizes development cycles by employing persistent worker processes that keep tools loaded in memory, eliminating the overhead of repeated initialization. Users can inspect and analyze project structures through a specialized query language, which provides deep visibility into dependency relationships and metadata. Beyond its core execution model, the system provides comprehensive tools for managing external dependencies across diverse programming languages and maintaining build pipeline observability. It offers granular control over build semantics, execution strategies, and test environments, enabling teams to scale their development workflows while maintaining consistent performance. The project includes extensive command-line documentation and configuration references to assist in managing build tasks and verifying project states. - [antonbabenko/terraform-best-practices](https://awesome-repositories.com/repository/antonbabenko-terraform-best-practices.md) (2,474 ⭐) — Terraform Best Practices free ebook translated into 🇬🇧🇦🇪🇧🇦🇧🇷🇫🇷🇬🇪🇩🇪🇬🇷🇮🇱🇮🇳🇮🇩🇮🇹🇯🇵🇰🇷🇵🇱🇷🇴🇨🇳🇪🇸🇹🇷🇺🇦🇵🇰 - [veggiemonk/awesome-docker](https://awesome-repositories.com/repository/veggiemonk-awesome-docker.md) (36,229 ⭐) — This project is a comprehensive, community-driven directory that serves as a centralized discovery hub for the container ecosystem. It functions as a structured knowledge base, aggregating a wide array of software tools, educational materials, and technical resources designed to assist developers and operators in mastering containerization technologies. The repository distinguishes itself through a meticulously organized taxonomy that maps the entire container lifecycle, from initial development and image building to orchestration, security, and infrastructure operations. By curating disparate external links and documentation into a single, version-controlled collection, it provides a clear navigation path for users seeking specialized utilities, ranging from runtime engines and registry tools to advanced supply chain security and observability solutions. Beyond its role as a tool index, the directory supports professional growth by offering a broad surface of learning resources, including tutorials, best practices, and community-vetted guides. It covers essential operational domains such as multi-container workload management, image hardening, and workflow optimization, ensuring that both newcomers and experienced practitioners have access to a reliable reference for modern containerized systems. - [flutter-team-archive/plugins](https://awesome-repositories.com/repository/flutter-team-archive-plugins.md) (17,710 ⭐) — This project is a collection of official plugin packages and a native integration library designed to provide a consistent interface for accessing hardware and software functionality across different mobile and desktop platforms. It serves as a native platform bridge, enabling cross-platform applications to invoke native code and manage operating system dependencies. The project utilizes a federated plugin architecture, splitting plugins into common interfaces and separate platform implementations to allow for independent development and extension. It further supports native integration through a foreign function interface for synchronous and asynchronous execution between isolates and host operating systems. The codebase covers a broad range of capabilities including state management, declarative app navigation, and local data persistence using SQL and key-value stores. It also encompasses networking primitives for authenticated HTTP and WebSocket communication, as well as comprehensive testing frameworks for unit, widget, and integration verification. Additional surface areas include AI integration for model-agnostic APIs and text-to-UI conversion, alongside a suite of UI components, physics-based animations, and monitoring tools for application performance profiling and crash reporting. - [alexandru/scala-best-practices](https://awesome-repositories.com/repository/alexandru-scala-best-practices.md) (0 ⭐) — A collection of best practices, friendly to people that want to contribute. - [f/prompts.chat](https://awesome-repositories.com/repository/f-prompts-chat.md) (163,814 ⭐) — This platform serves as a centralized management system for organizing, refining, and versioning AI instructions and agent skills. It functions as a repository that enables users to store, categorize, and retrieve structured prompts, ensuring consistent performance across various artificial intelligence models. By integrating with the Model Context Protocol, the system allows external AI assistants and development environments to discover and access these instruction libraries directly. The platform distinguishes itself through its focus on prompt engineering and automated refinement, utilizing generative analysis to transform basic user instructions into structured, high-performance prompts. It supports multi-tenant white-labeling, allowing for isolated, custom-branded deployments that include secure identity management and granular access control. Additionally, the system incorporates an interactive educational environment designed to teach users effective techniques for constructing and optimizing AI interactions. Beyond core management, the platform provides semantic search indexing to facilitate efficient discovery of relevant instructions based on user intent. It also supports the development of complex agent skills and includes automated workflows that enforce behavioral standards for AI interactions. The system is designed for both individual use and enterprise-grade infrastructure deployment, offering tools for visual customization and interface localization to meet diverse organizational requirements. - [flightcontrolhq/superjson](https://awesome-repositories.com/repository/flightcontrolhq-superjson.md) (5,260 ⭐) — Superjson is a lossless JSON serialization library and data transcoder. It converts complex JavaScript and TypeScript data types into strings and metadata to ensure that type identity is preserved during data transfer. The library preserves non-native types such as Dates, Maps, and Sets by splitting values into a JSON-compatible payload and a separate map of type-specific metadata. It utilizes a registry-based mapping system that allows for the definition of custom type handlers to manage third-party data types during serialization and deserialization. This utility supports cross-process data communication and type-safe data transfer by restoring original object prototypes and complex data types. It performs encoding based on runtime types rather than using a predefined schema. - [lukasmartinelli/hadolint](https://awesome-repositories.com/repository/lukasmartinelli-hadolint.md) (12,225 ⭐) — Hadolint is a Dockerfile linter and Haskell-based static analysis tool. It analyzes container image configuration files against a set of rules to ensure valid syntax and adherence to best practices. The tool functions as a wrapper for shell checkers to inspect inline shell commands and scripts within build instructions, identifying scripting errors and bugs. It also includes security auditing capabilities to warn when images are pulled from registries not explicitly listed as trusted. The analysis engine covers quality assurance through label schema validation, syntax pattern verification, and image optimization. Users can manage the process via configuration files to control rule severity, suppress specific warnings, and define shell compatibility for non-POSIX environments. - [anthropics/claude-code](https://awesome-repositories.com/repository/anthropics-claude-code.md) (132,728 ⭐) — Anthropic's terminal-native AI coding agent. - [pangeo-data/cog-best-practices](https://awesome-repositories.com/repository/pangeo-data-cog-best-practices.md) (0 ⭐) — Best practices with cloud-optimized-geotiffs (COGs) - [rhysd/actionlint](https://awesome-repositories.com/repository/rhysd-actionlint.md) (3,617 ⭐) — actionlint is a static analysis tool and linter specifically designed for GitHub Actions workflow files. It functions as a CI workflow validator and YAML configuration linter to ensure the syntax and logic of automation files are correct before deployment. The project distinguishes itself by performing deep security auditing and script analysis. It includes a shell script auditor to detect syntax bugs and script injection vulnerabilities in inline commands, and it scans for hardcoded credentials to prevent security leaks. The tool covers a broad range of validation capabilities, including expression type checking, job dependency verification, and the validation of reusable workflows and matrix configurations. It also verifies trigger events, cron schedules, and action metadata to ensure compatible data types and required parameters are present. The linter can be used via the command line or integrated into IDEs for real-time feedback. - [elysiajs/elysia](https://awesome-repositories.com/repository/elysiajs-elysia.md) (18,531 ⭐) — Elysia is a high-performance TypeScript web framework designed for building type-safe backend services. It provides a modular, plugin-based architecture that allows developers to compose server logic, middleware, and validation schemas into scalable application instances. By leveraging native web standards, the framework ensures portability across diverse JavaScript runtimes, including Node.js, Deno, and various edge computing environments. The framework distinguishes itself through its focus on end-to-end type safety, automatically synchronizing request and response definitions between the server and client. It features a sophisticated plugin system that enables granular control over the request lifecycle, allowing for scoped validation, dependency injection, and shared state management. Additionally, it includes built-in support for real-time communication via WebSockets and provides automated generation of interactive API documentation directly from server routes. Beyond its core routing and validation capabilities, the framework offers a comprehensive suite of tools for managing the request-response lifecycle, including custom payload parsing, reactive cookie management, and streaming responses. It also integrates observability features such as request tracing and performance monitoring, alongside testing utilities that allow for in-memory request simulation without requiring a live network connection. The project is designed for flexibility in deployment, supporting everything from standard server environments to serverless and edge platforms, with options for bundling applications into portable binaries. - [alanjames1987/node.js-best-practices](https://awesome-repositories.com/repository/alanjames1987-node-js-best-practices.md) (743 ⭐) — If you want to improve these best practices in any way please don't hesitate to create a pull request. - [ariya/phantomjs](https://awesome-repositories.com/repository/ariya-phantomjs.md) (29,489 ⭐) — PhantomJS is a scriptable, headless browser engine based on WebKit that provides a programmatic interface for automating web page interactions. It operates without a graphical user interface, allowing for the execution of JavaScript to navigate pages, manipulate the document object model, and perform functional testing of web applications. The tool distinguishes itself by providing low-level control over the browser rendering lifecycle and network stack. It enables real-time interception and modification of network traffic, alongside the ability to generate visual snapshots and document exports from pages that rely on complex dynamic content. By maintaining a virtual display buffer and running the engine in an isolated memory space, it ensures consistent layout calculations and stability during automated sessions. Beyond its core rendering capabilities, the project supports complex automation workflows through command-line configuration and inter-process communication. These features facilitate the integration of browser-based tasks into larger software systems, enabling automated data extraction, performance analysis, and the verification of web application behavior. - [mvdan/sh](https://awesome-repositories.com/repository/mvdan-sh.md) (8,825 ⭐) — This project is a POSIX shell toolset providing utilities for parsing, formatting, interpreting, and validating shell scripts. It includes a parser that converts Bash and Zsh source code into structured syntax trees, a formatter for standardizing script layout, and a runtime interpreter for executing shell commands and script logic. The toolset supports dialect-aware parsing to handle multiple shell language specifications. It provides capabilities for static analysis, allowing shell source code to be converted into structured data for external manipulation or validation against specific dialect rules. Additional capabilities include resolving variable and glob expansions, verifying UTF-8 encoding, and scanning directory hierarchies to discover shell script files. The system can also serialize internal syntax trees to and from typed JSON for state restoration and external analysis. - [anoma/anoma](https://awesome-repositories.com/repository/anoma-anoma.md) (33,787 ⭐) — Anoma is a distributed operating system designed to abstract the complexities of blockchain networks into a unified interface for cross-chain coordination. At its core, the platform utilizes a resource-based state machine and an intent-centric execution model, where user-defined goals are processed and settled by decentralized solvers rather than through direct, manual execution. This architecture enables the creation of applications that operate across heterogeneous distributed networks while maintaining a consistent developer and user experience. The platform distinguishes itself through a privacy-preserving framework that leverages zero-knowledge proofs to hide transaction details, sender identities, and asset amounts on public ledgers. Security is managed through hardware-backed passkeys, which derive hierarchical cryptographic keyrings in session memory to eliminate the need for persistent local storage. Furthermore, Anoma employs protocol adapters—smart contracts deployed to external chains—to act as secure gateways for cross-chain asset interoperability and shielded transaction management. The system includes a comprehensive toolkit for building decentralized applications, featuring high-performance cryptographic operations executed via WebAssembly modules. Developers can access diagnostic utilities like the Anoma Explorer to monitor protocol activity, indexed transactions, and resource logic. The infrastructure also supports private resource retrieval through discovery-key-based indexing, ensuring that encrypted data is routed securely to the appropriate user keyring. Documentation and developer resources include practical tutorials for building applications, such as guides for implementing passkey-based identity management and shielded token deposit workflows. - [jessfraz/dockerfiles](https://awesome-repositories.com/repository/jessfraz-dockerfiles.md) (13,937 ⭐) — Various Dockerfiles I use on the desktop and on servers. - [koalaman/shellcheck](https://awesome-repositories.com/repository/koalaman-shellcheck.md) (39,574 ⭐) — This project is a static analysis tool and linter designed to improve the quality, reliability, and portability of shell scripts. By performing deep structural analysis, it identifies common programming pitfalls, syntax errors, and security vulnerabilities before scripts are executed. It functions as an automated code reviewer that enforces best practices and helps developers maintain consistent, robust code across different operating environments. The tool distinguishes itself through its dialect-aware grammar resolution, which adapts its parsing logic based on the specific shell interpreter detected. It utilizes a sophisticated engine that constructs an abstract syntax tree to evaluate logic, quoting, and portability concerns. Developers can exert granular control over the analysis process by using inline directives to suppress specific warnings or configure how the tool resolves external source files. The project covers a comprehensive surface of diagnostic capabilities, ranging from fundamental syntax validation to complex logic checks. It provides guidance on idiomatic script construction, including safe file handling, efficient arithmetic operations, and proper command substitution. These features collectively ensure that scripts adhere to POSIX standards and remain compatible across various shell implementations. The tool is distributed as a command-line utility, allowing for integration into development workflows to provide immediate feedback on script integrity. - [fukamachi/dockerfiles](https://awesome-repositories.com/repository/fukamachi-dockerfiles.md) (0 ⭐) — Dockerfiles for each version of Common Lisp implementations and utilities. Currently provides the following products: - [oils-for-unix/oils](https://awesome-repositories.com/repository/oils-for-unix-oils.md) (3,288 ⭐) — Oils is a Unix shell interpreter and scripting language runtime that combines a modern shell language with POSIX and Bash compatibility. It functions as a structured data shell, integrating JSON and J8 formats to manage complex data without relying on string parsing. The system is distinguished by a C++ transpiled interpreter that converts a subset of Python source code into strongly typed C++ for high-performance execution. It features a garbage-collected typed runtime that supports prototype-based polymorphism, lexical closures, and reference-based variable mutation. To decouple shell logic from the user interface, it can operate as a background server using socket-based communication. The project covers a broad range of capabilities including advanced text pattern matching with regular expressions and globs, structured data serialization, and a strict error-handling framework featuring try-catch interception. It also provides an interactive command-line environment with customizable prompts and an AST inspection system for structural analysis of scripts. The runtime is implemented in Python for development and testing purposes. - [hadolint/hadolint](https://awesome-repositories.com/repository/hadolint-hadolint.md) (12,225 ⭐) — Hadolint is a static analysis tool designed to validate container build configurations. It functions as a security scanner and configuration auditor, parsing build instructions into a structured format to identify deviations from security and efficiency standards. The tool distinguishes itself by performing deep inspection of embedded shell commands. By tokenizing and analyzing these scripts, it detects common scripting errors and security vulnerabilities that might otherwise persist within a container image. It integrates external analysis tools to provide specialized validation for these inline commands, ensuring that both the container structure and the execution logic are evaluated. Beyond basic syntax checking, the utility supports automated workflows by identifying inefficient layer creation and insecure configuration settings. It is designed for integration into continuous integration and deployment pipelines to catch configuration issues before images are built. The project provides a command-line interface for executing these audits across container definitions. - [coder/code-server](https://awesome-repositories.com/repository/coder-code-server.md) (78,024 ⭐) — This project provides a remote development platform that enables users to access a full-featured integrated development environment through a standard web browser. By decoupling the user interface from the server-side filesystem, it allows for persistent coding workspaces to be hosted on remote servers, virtual machines, or cloud-native infrastructure, ensuring a consistent development experience from any device. The platform distinguishes itself through a secure gateway architecture that manages traffic, authentication, and encryption at the edge. It utilizes persistent WebSocket connections to synchronize editor state and terminal input-output between the remote server and the browser. Furthermore, it includes built-in service proxying capabilities that allow developers to expose locally running web applications via secure subdomains or subpaths, complete with integrated identity verification and traffic management. To support diverse infrastructure requirements, the system offers flexible deployment options including containerized environments and automated provisioning workflows. It maintains state continuity through filesystem-mounted persistence, ensuring that configurations and project data remain intact across restarts. The platform also enforces network security by managing TLS certificates for HTTPS traffic and providing integration layers for external authentication providers. Installation is supported across various host architectures through shell scripts, package managers, or standalone archives, with built-in utilities for managing the application lifecycle. - [zhanymkanov/fastapi-best-practices](https://awesome-repositories.com/repository/zhanymkanov-fastapi-best-practices.md) (16,515 ⭐) — This project provides a comprehensive guide to architectural patterns and best practices for building scalable, maintainable, and performant web applications using FastAPI. It focuses on standardizing development approaches for Python web services, emphasizing robust request validation, dependency injection, and automated documentation standards to ensure consistent API design. The guide distinguishes itself by promoting domain-driven modular packaging, which organizes application logic into isolated, feature-based directories to support long-term codebase scalability. It also details strategies for managing asynchronous execution, including techniques to offload CPU-intensive or blocking tasks to thread pools or external worker queues, ensuring the main event loop remains responsive. The repository covers a broad capability surface, including standardized database schema design, request-scoped dependency caching, and environment-aware documentation control. It also addresses testing workflows by demonstrating how to override dependencies with fakes to isolate components, alongside methods for chaining complex validation logic across endpoints. - [eyaltoledano/claude-task-master](https://awesome-repositories.com/repository/eyaltoledano-claude-task-master.md) (27,567 ⭐) — This project is an autonomous, multi-model orchestrator designed to manage the full software development lifecycle through a command-line interface. It functions as an intelligent agent that decomposes high-level product goals into actionable, prioritized subtasks, manages dependency graphs, and executes development cycles. By automating requirement parsing, technical research, and task tracking, it maintains project alignment and momentum throughout the implementation process. The system distinguishes itself through a provider-agnostic abstraction layer that allows users to assign specific artificial intelligence models to primary, research, or fallback roles. It supports both cloud-based services for broad reasoning capabilities and local model execution to ensure data privacy and offline functionality. Furthermore, the platform integrates live web research directly into the task management workflow, enabling agents to generate complexity scores and validate technical decisions against current industry patterns before writing code. Beyond core orchestration, the tool provides a comprehensive framework for managing task metadata, parallel workstreams, and team collaboration. It includes features for real-time task monitoring, automated documentation generation, and integration with development environments through standardized communication protocols and editor extensions. The system is configured via local environment files, which handle secure credential management and allow for the optimization of active tools to balance context window usage. - [nvm-sh/nvm](https://awesome-repositories.com/repository/nvm-sh-nvm.md) (93,825 ⭐) — This project is a command-line tool designed for managing multiple runtime versions on a local machine. It functions as a shell-based environment manager that enables users to install, switch between, and maintain different versions of a runtime to support project-specific requirements or diverse shell sessions. By dynamically updating system paths and environment variables, it provides a consistent interface for runtime version control across various Unix-like operating systems. The tool distinguishes itself through its portable, POSIX-compliant shell implementation, which ensures reliable execution across a wide range of shell environments. It utilizes lazy-loading function aliasing to defer the execution of management logic until a command is actually invoked, minimizing overhead during shell startup. Furthermore, it employs directory-symlink-based switching and persistent environment variable configuration to maintain a stable and predictable execution context for developers. Beyond core version switching, the project supports a broad range of environment configuration capabilities. It facilitates the installation of pre-release and nightly builds, provides command-line tab completion for improved usability, and includes automated mechanisms for updating the manager itself. The system is designed to enforce environment consistency across development teams, allowing for standardized runtime configurations and simplified cross-version development workflows. Installation is performed via shell scripts, which integrate the manager into the user's shell profile to ensure persistent access to versioning commands across terminal sessions. - [moonbingbing/openresty-best-practices](https://awesome-repositories.com/repository/moonbingbing-openresty-best-practices.md) (3,620 ⭐) — This project is an API gateway optimization manual and implementation guide for OpenResty. It provides a collection of architectural patterns and coding standards for developing scriptable server logic using the Lua language within Nginx. The repository serves as a reference for extending web server functionality and optimizing network traffic gateways. It focuses on deployment strategies and high-performance coding patterns to reduce latency and increase request throughput. The content covers the development of custom gateway logic, edge computing workflows, and high-throughput network engineering to improve the performance and stability of gateways. - [denoland/deno](https://awesome-repositories.com/repository/denoland-deno.md) (107,110 ⭐) — Deno is a high-performance runtime for JavaScript and TypeScript that prioritizes security and developer productivity. Built on the V8 engine, it provides a secure execution environment that enforces a default-deny security model, requiring explicit user authorization for access to system resources like the file system, network, and environment variables. The runtime natively supports modern web-standard APIs, ensuring consistent behavior and portability across different environments. What distinguishes Deno is its integrated approach to the software development lifecycle. It bundles essential utilities—including a formatter, linter, test runner, and dependency manager—directly into the runtime, eliminating the need for external build tools or complex transpilation steps. The platform features a universal module resolution system that supports remote HTTPS URLs, local paths, and standard package registries, all backed by lockfiles to ensure build determinism and supply chain security. Beyond its core runtime capabilities, Deno includes a built-in, persistent key-value database engine that supports atomic transactions and reactive data monitoring. It also provides a robust compatibility layer for the Node.js ecosystem, allowing for the seamless execution of legacy modules and native binary addons. For multi-tenant or distributed applications, the runtime offers isolated sandbox environments that manage resource constraints and security boundaries, facilitating secure code execution in shared infrastructure. The project is distributed as a single binary, providing a unified toolchain for managing dependencies, executing tasks, and configuring runtime security policies. - [alexeymezenin/laravel-best-practices](https://awesome-repositories.com/repository/alexeymezenin-laravel-best-practices.md) (12,299 ⭐) — This project is a comprehensive guide to architectural standards and coding patterns for developing maintainable applications within the Laravel framework. It focuses on clean code standards, applying the single responsibility and DRY principles to ensure codebase predictability and consistency. The guide emphasizes decoupling components by moving business logic into service layers and shifting input validation into dedicated request classes to keep controllers lean. It advocates for the use of a service container and dependency injection to reduce class coupling and improve testability. The project covers a broad range of capabilities, including database optimization through eager loading and chunked processing, the use of object-relational mapping for data persistence, and the standardization of naming conventions. It also provides strategies for managing application configuration and localization by externalizing environment variables and text strings. - [spotify/dockerfile-mode](https://awesome-repositories.com/repository/spotify-dockerfile-mode.md) (564 ⭐) — An emacs mode for handling Dockerfiles - [agones-dev/agones](https://awesome-repositories.com/repository/agones-dev-agones.md) (6,888 ⭐) — Agones is a Kubernetes game server orchestrator designed for hosting, scaling, and managing dedicated multiplayer game servers. It extends the Kubernetes control plane using custom resource definitions to define game server and fleet objects, utilizing a dedicated fleet manager to maintain pools of warm server instances. The system provides a game server SDK and language-specific client libraries that allow server processes to signal readiness, health, and shutdown states directly to the controller. It distinguishes itself through specialized scaling logic, including the use of WebAssembly modules and external webhooks to calculate replica counts and maintain ready server buffers. The platform covers a broad range of operational capabilities, including automated fleet scaling, session-aware deployment strategies, and precise port mapping for UDP traffic. It manages the full infrastructure lifecycle across multi-cloud environments, offering tools for regional allocation, latency-based routing, and integrated health monitoring via sidecar containers. The project supports deployment via infrastructure-as-code tools like Terraform and provides local development environments for simulating server lifecycles and debugging binaries. - [emotion-js/emotion](https://awesome-repositories.com/repository/emotion-js-emotion.md) (18,017 ⭐) — This project is a styling library and framework designed for component-based architectures, enabling developers to define and manage visual styles directly within JavaScript or TypeScript. It functions as a styling engine that generates unique class names from style definitions, ensuring encapsulated, predictable, and maintainable visual presentation across applications. By integrating with component logic, it allows for the creation of reusable UI elements with styles defined through template literals or object syntax. The library distinguishes itself through a comprehensive suite of build-time and runtime capabilities that extend beyond basic styling. It supports dynamic theme propagation through the component tree, allowing for consistent design token management, and provides advanced server-side rendering support by extracting and serializing styles for initial page loads. Furthermore, it includes specialized tooling for performance optimization, such as critical CSS management, dead code elimination, and build-time style transformations, alongside security features like content security policy nonce injection for dynamically generated styles. Beyond its core styling primitives, the project offers a robust ecosystem for managing complex design systems. This includes responsive design utilities, global style management, and extensive configuration options for style injection and debugging. The library also provides automated tools for code migration, style usage validation, and standards enforcement to maintain consistency across large-scale projects. Comprehensive documentation and installation instructions are available in the repository, which also provides utilities for source-mapped debugging and style serialization to assist in development and testing workflows. - [uber-go/nilaway](https://awesome-repositories.com/repository/uber-go-nilaway.md) (3,765 ⭐) — Nilaway is a static analysis tool and linter plugin for Go designed to identify potential nil pointer dereferences in source code to prevent runtime panics. It functions as an inter-procedural pointer analyzer that tracks data flow across functions and packages to detect memory safety issues. The tool differentiates itself by tracking pointer states through anonymous functions, closures, and struct initializations. It employs a pointer analysis framework that monitors how values flow through a program to determine if a variable is safe to dereference at a specific point. The analyzer can be integrated into continuous integration workflows and linting toolchains, exporting its findings in a structured format. It includes configuration utilities to filter analysis scope, allowing users to restrict checks to specific first-party packages. - [cloudflare/workerd](https://awesome-repositories.com/repository/cloudflare-workerd.md) (8,346 ⭐) — workerd is a serverless edge runtime designed for executing lightweight, distributed functions at the network edge. It utilizes a V8-based JavaScript engine to provide fast startup and low memory overhead, while maintaining a WebAssembly-compatible execution environment that allows modules to run alongside JavaScript for high-performance computational tasks. The runtime supports isolate-based multi-tenancy to run multiple independent execution contexts within a single process. It implements an event-driven execution model that triggers code based on network requests or scheduled events and includes support for privileged socket inheritance to operate under unprivileged user accounts. The project covers a broad set of capabilities including serverless API development, AI inference deployment using GPU hardware and vector databases, and automated browser orchestration for web scraping. Additional functionality encompasses global state management via SQL databases and key-value stores, background job scheduling with message queues, and the delivery of static assets through a content delivery network. Development is supported by a command-line interface for project management, custom build pipelines, and tools for pinning runtime behavior to specific dates to ensure consistency. - [dprint/dprint](https://awesome-repositories.com/repository/dprint-dprint.md) (3,795 ⭐) — dprint is a multi-language code formatter that applies consistent styling across various programming languages using a pluggable architecture. It functions as a unified project style management tool, a command-line interface for continuous integration style enforcement, and a Language Server Protocol implementation for real-time formatting in editors. The project is distinguished by a WebAssembly-based plugin system that loads sandboxed formatting logic from URLs or file paths. It further extends its capabilities through a process-based tool integration that wraps external command-line interfaces as plugins, allowing disparate formatting engines to be managed under a single configuration schema. The tool covers a wide range of capabilities, including incremental formatting to optimize large-scale codebases, hierarchical configuration resolution with inheritance, and recursive formatting for embedded code blocks in Markdown. It provides support for diverse languages such as Rust, Python, Go, JavaScript, TypeScript, and CSS, among others. The command-line interface includes utilities for CI verification, configuration debugging, and automated tool version management. - [palash25/best-practices-checklist](https://awesome-repositories.com/repository/palash25-best-practices-checklist.md) (969 ⭐) — A list of awesome idiomatic code resources. Rust:crab:, Go, Ruby:gem:, Pony :horse:, Ocaml :camel:, Erlang and more