diff --git a/Dockerfile b/Dockerfile
index a4507878..4473f668 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -27,7 +27,7 @@ RUN sh -c 'echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable
 # We also clean out system files we don't need to reduce image size:
 #   * /usr/share/man - manual pages
 #   * /usr/share/locales - we don't need to support multiple languages at the OS level
-#   * /var/cache/apt/arhives - we don't need to hold onto deb packages once they're installed
+#   * /var/cache/apt/archives - we don't need to hold onto deb packages once they're installed
 RUN apt-get update -qq &&\
     apt-get upgrade -y &&\
     apt-get install -y google-chrome-stable libpq-dev nodejs --no-install-recommends &&\
diff --git a/README.md.tt b/README.md.tt
index 246d3769..03d18e8d 100644
--- a/README.md.tt
+++ b/README.md.tt
@@ -22,7 +22,7 @@ This project follows [Ackama standard branch and environment naming](https://git
 
     TODO: Add columns to the table above if there are resources that are required for that environment e.g. a Redis, ElasticSearch etc.
     TODO: If we need to assume role into their AWS account you should mention that here (don't list the role name - leave that in 1Password)
-    TODO: If there are any unusaual aspects to the deployment of this app you should mention them e.g.
+    TODO: If there are any unusual aspects to the deployment of this app you should mention them e.g.
              * Uses Chef but is controlled by AWS Opsworks
              * Gets
     TODO: The typical log level for production environments are 'info' - if you are not using 'info' then please document why.
diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb
index 8b48b706..b0b86452 100644
--- a/config/initializers/content_security_policy.rb
+++ b/config/initializers/content_security_policy.rb
@@ -50,7 +50,7 @@
   # ###########################
   #
   # * This example adds the S3 bucket to the `default_src` policy meaning that
-  #   any kind of asset can be loaded from it. You should be more targetted if
+  #   any kind of asset can be loaded from it. You should be more targeted if
   #   you can e.g. if the bucket is only going to serve images then use
   #   `policy.img_src` instead.
   # * IMPORTANT: you can't just uncomment these lines to make this work - you
diff --git a/variants/devise/spec/system/user_sign_in_feature_spec.rb b/variants/devise/spec/system/user_sign_in_feature_spec.rb
index 389c2d57..c1429fcd 100644
--- a/variants/devise/spec/system/user_sign_in_feature_spec.rb
+++ b/variants/devise/spec/system/user_sign_in_feature_spec.rb
@@ -72,7 +72,7 @@
                                          .dig("_rails", "exp")
                                          .to_date
 
-        # The remember_me cookie expriy is in UTC timezone so we need to
+        # The remember_me cookie expiry is in UTC timezone so we need to
         # compare it with the date as it is right now in UTC (not in NZ)
         today_in_utc = Time.current.utc.to_date
 
diff --git a/variants/devise/spec/system/user_sign_up_feature_spec.rb b/variants/devise/spec/system/user_sign_up_feature_spec.rb
index fcbfe508..de9a6b7a 100644
--- a/variants/devise/spec/system/user_sign_up_feature_spec.rb
+++ b/variants/devise/spec/system/user_sign_up_feature_spec.rb
@@ -46,7 +46,7 @@
 
   describe "password validation" do
     it "users are informed about the password length requirements" do
-      # we expect the sign-in page to dispaly a message about password requirements
+      # we expect the sign-in page to display a message about password requirements
       expect(page).to have_text("Password (16 characters minimum)")
     end
 
diff --git a/variants/frontend-base/sentry/template.rb b/variants/frontend-base/sentry/template.rb
index a63edb04..8891d4a3 100644
--- a/variants/frontend-base/sentry/template.rb
+++ b/variants/frontend-base/sentry/template.rb
@@ -44,7 +44,7 @@
 
 prepend_to_file "app/frontend/packs/application.js" do
   <<~'EO_JS'
-    // The application.js pack is defered by default which means that nothing imported 
+    // The application.js pack is deferred by default which means that nothing imported 
     // in this file will begin executing until after the page has loaded. This helps to 
     // speed up page loading times, especially in apps that have large amounts of js.
     //  
diff --git a/variants/performance/spec/performance_helper.rb b/variants/performance/spec/performance_helper.rb
index 8e0b3269..349cb76a 100644
--- a/variants/performance/spec/performance_helper.rb
+++ b/variants/performance/spec/performance_helper.rb
@@ -15,7 +15,7 @@
 RSpec.configure do |config|
   # Precompiling assets before running specs with js set to true not only helps
   # to speed things up slightly but also creates an environment that we can run
-  # performance specs against.  Without this webpacker doesnt zip the js packs
+  # performance specs against.  Without this webpacker doesn't zip the js packs
   # and the performance specs show vastly different results to a live
   # environment.
   config.before(:suite) do