Request: Remove Modelines and Use EditorConfig

[l-zeuch]

Seeing as Vim modelines pose a security concern and are generally frowned upon, I suggest to instead resort to EditorConfig.

Reading from their documentation, everything we already do via the modelines throughout the repository is just as possible using EditorConfig. Moreover, EditorConfig allows for consistent configuration across a larger set of editors, rather than solely Vim and its derivatives.

See also https://security.stackexchange.com/questions/36001/vim-modeline-vulnerabilities for a discussion, as well as:

• CVE-2002-1377
• CVE-2005-2368
• CVE-2007-2438
• CVE-2016-1248
• CVE-2019-12735

Although it is not impossible that these vulnerabilities are already patched, it is nonwithstanding still a good practise to abandon modelines and instead use a universal format.

[LRitzdorf]

Excellent point! Thanks for bringing this up