Home / apolloconfig / apollo
Repository Analysis

apolloconfig/apollo

Apollo is a reliable configuration management system suitable for microservice configuration management scenarios.

4.6 Likely human-written View on GitHub
4.6
Adjusted Score
4.6
Raw Score
100%
Time Factor
2026-05-30
Last Push
29,758
Stars
Java
Language
156,416
Lines of Code
1161
Files
203
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 46HIGH 0MEDIUM 2LOW 155

Pattern Findings

203 matches across 8 categories. Click a row to expand file-level details.

Hallucination Indicators46 hits · 555 pts
SeverityFileLineSnippet
CRITICAL…ip/framework/apollo/biz/repository/ItemRepository.java48 @Query("SELECT new com.ctrip.framework.apollo.common.dto.ItemInfoDTO(n.appId, n.clusterName, n.namespaceName, i.key, i
CRITICAL…ip/framework/apollo/biz/repository/ItemRepository.java54 @Query("SELECT new com.ctrip.framework.apollo.common.dto.ItemInfoDTO(n.appId, n.clusterName, n.namespaceName, i.key, i
CRITICAL…ip/framework/apollo/biz/repository/ItemRepository.java59 @Query("SELECT new com.ctrip.framework.apollo.common.dto.ItemInfoDTO(n.appId, n.clusterName, n.namespaceName, i.key, i
CRITICAL…llo/portal/controller/ConfigsImportControllerTest.java97 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…llo/portal/controller/ConfigsImportControllerTest.java112 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…llo/portal/controller/ConfigsImportControllerTest.java137 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…k/apollo/portal/controller/InstanceControllerTest.java75 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java159 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java184 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java205 .andExpect(org.springframework.test.web.servlet.result.MockMvcResultMatchers.status()
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java224 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java253 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java275 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java298 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java321 org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java335 .andExpect(org.springframework.test.web.servlet.result.MockMvcResultMatchers.status()
CRITICAL…/v1/controller/AppControllerParamBindLowLevelTest.java347 .andExpect(org.springframework.test.web.servlet.result.MockMvcResultMatchers.status().isOk());
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java216 new com.ctrip.framework.apollo.openapi.model.OpenEnvClusterDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java228 new com.ctrip.framework.apollo.openapi.model.OpenOrganizationDto();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java276 new com.ctrip.framework.apollo.openapi.model.OpenNamespaceLockDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java363 new com.ctrip.framework.apollo.openapi.model.OpenItemPageDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java441 new com.ctrip.framework.apollo.openapi.model.OpenNamespaceDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java454 new com.ctrip.framework.apollo.openapi.model.OpenAppNamespaceDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java498 new com.ctrip.framework.apollo.openapi.model.OpenAppDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java511 new com.ctrip.framework.apollo.openapi.model.OpenClusterDTO();
CRITICAL…ntroller/ApolloOpenApiJavaClientCompatibilityTest.java520 new com.ctrip.framework.apollo.openapi.model.OpenItemDTO();
CRITICAL…rk/apollo/openapi/v1/controller/AppControllerTest.java219 new com.ctrip.framework.apollo.openapi.model.OpenClusterDTO();
CRITICAL…enapi/server/service/ServerItemOpenApiServiceTest.java81 new com.ctrip.framework.apollo.openapi.dto.OpenItemDTO();
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java51 encoders.put("ldap", new org.springframework.security.crypto.password.LdapShaPasswordEncoder());
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java52 encoders.put("MD4", new org.springframework.security.crypto.password.Md4PasswordEncoder());
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java54 new org.springframework.security.crypto.password.MessageDigestPasswordEncoder("MD5"));
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java56 org.springframework.security.crypto.password.NoOpPasswordEncoder.getInstance());
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java60 new org.springframework.security.crypto.password.MessageDigestPasswordEncoder("SHA-1"));
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java62 new org.springframework.security.crypto.password.MessageDigestPasswordEncoder("SHA-256"));
CRITICAL…l/spi/springsecurity/ApolloPasswordEncoderFactory.java64 new org.springframework.security.crypto.password.StandardPasswordEncoder());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java41 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.LOCAL.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java43 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.DEV.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java45 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.FAT.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java47 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.FWS.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java49 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.UAT.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java51 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.LPT.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java53 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.PRO.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java55 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.TOOLS.name());
CRITICAL…com/ctrip/framework/apollo/portal/environment/Env.java57 addEnvironment(com.ctrip.framework.apollo.core.enums.Env.UNKNOWN.name());
CRITICAL…r/service/ServerNamespaceManagementOpenApiService.java138 !com.ctrip.framework.apollo.core.utils.StringUtils.isBlank(lockInfo.getLockOwner()));
CRITICAL…vice/service/config/DefaultIncrementalSyncService.java92 if (com.google.common.base.Objects.equal(previousValue, currentValue)) {
Hyper-Verbose Identifiers81 hits · 77 pts
SeverityFileLineSnippet
LOW…ic/scripts/controller/AuditLogTraceDetailController.js22function auditLogTraceDetailController($scope, $location, $window, $translate, toastr, AppService, AppUtil, EventManager
LOW…ic/scripts/controller/AuditLogTraceDetailController.js150 function findMoreRelatedDataInfluence() {
LOW…ic/scripts/controller/AuditLogTraceDetailController.js170 function refreshDataInfluenceEntities() {
LOW…urces/static/scripts/controller/NamespaceController.js88 function shouldAppendNamespacePrefix() {
LOW…resources/static/scripts/controller/IndexController.js39 function initCreateApplicationPermission() {
LOW…atic/scripts/controller/GlobalSearchValueController.js20function GlobalSearchValueController($scope, $window, $translate, toastr, AppUtil, GlobalSearchValueService, PermissionS
LOW…atic/scripts/controller/GlobalSearchValueController.js196 function determineDisplayValueInARow(value, highlight) {
LOW…atic/scripts/controller/GlobalSearchValueController.js254 function determineDisplayKeyOrValueWithoutShowHighlightKeyword(keyorvalue, highlight) {
LOW…ipts/controller/DeleteAppClusterNamespaceController.js21function DeleteAppClusterNamespaceController($scope, $translate, toastr, AppUtil, AppService, ClusterService, NamespaceS
LOW…es/static/scripts/controller/ServerConfigController.js202 function confirmDeletePortalDBConfig() {
LOW…es/static/scripts/controller/ServerConfigController.js221 function confirmDeleteConfigDBConfig() {
LOW…es/static/scripts/controller/ServerConfigController.js260 function resetPortalDBConfigSearchKey() {
LOW…es/static/scripts/controller/ServerConfigController.js277 function resetConfigDBConfigSearchKey() {
LOW…static/scripts/controller/role/SystemRoleController.js72 function getCreateApplicationRoleUsers() {
LOW…scripts/controller/config/ConfigNamespaceController.js332 function showNoModifyPermissionDialog() {
LOW…/scripts/controller/config/ReleaseHistoryController.js192 function getReleaseDiffConfiguration(history) {
LOW…/scripts/directive/import-namespace-modal-directive.js19function importNamespaceModalDirective($window, $q, $translate, $http, toastr, AppUtil, EventManager,
LOW…/scripts/directive/import-namespace-modal-directive.js40 function showImportNamespaceConfirmDialog() {
LOW…cripts/directive/gray-release-rules-modal-directive.js69 function changeApplyToAllInstancesToTrue(branch) {
LOW…cripts/directive/gray-release-rules-modal-directive.js73 function changeApplyToAllInstancesToFalse(branch) {
LOW…/static/scripts/directive/namespace-panel-directive.js175 function getVisibleTextEditorCount(namespace) {
LOW…/static/scripts/directive/namespace-panel-directive.js191 function getFullscreenTextEditorLines(editor) {
LOW…/static/scripts/directive/namespace-panel-directive.js570 function initUserOperateBranchScene(namespace) {
LOW…/static/scripts/directive/namespace-panel-directive.js595 function initNamespaceInstancesCount(namespace) {
LOW…ective/open-manage-grant-permission-modal-directive.js19function grantPermissionModalDirective($translate, toastr, $sce, AppUtil, EnvService, ConsumerService) {
LOW…/scripts/directive/delete-namespace-modal-directive.js19function deleteNamespaceModalDirective($window, $q, $translate, toastr, AppUtil, EventManager,
LOW…/scripts/directive/delete-namespace-modal-directive.js103 function showDeleteNamespaceConfirmDialog() {
LOW…es/static/scripts/directive/release-modal-directive.js172 function switchReleaseChangeViewType(type) {
LOW…/resources/static/scripts/services/NamespaceService.js96 function toOpenCreateNamespaceDTOs(namespaceCreationModels, appId) {
LOW…/resources/static/scripts/services/NamespaceService.js241 function getPublicAppNamespaceAllNamespaces(env, publicNamespaceName, page, size) {
LOW…c/main/resources/static/scripts/services/AppService.js95 function normalizeOpenApiStatusArray(result, bodyMapper) {
LOW…c/main/resources/static/scripts/services/AppService.js114 function normalizeOpenApiStringArray(result) {
LOW…resources/static/scripts/services/PermissionService.js129 function initAppNamespacePermission(appId, namespace) {
LOW…resources/static/scripts/services/PermissionService.js207 function hasNamespaceEnvPermission(appId, env, namespaceName, permissionType) {
LOW…resources/static/scripts/services/PermissionService.js249 function assignNamespaceRoleToUser(appId, namespaceName, roleType, user) {
LOW…resources/static/scripts/services/PermissionService.js270 function assignNamespaceEnvRoleToUser(appId, env, namespaceName, roleType, user) {
LOW…resources/static/scripts/services/PermissionService.js292 function removeNamespaceRoleFromUser(appId, namespaceName, roleType, user) {
LOW…resources/static/scripts/services/PermissionService.js313 function removeNamespaceEnvRoleFromUser(appId, env, namespaceName, roleType, user) {
LOW…resources/static/scripts/services/PermissionService.js335 function assignClusterNsRoleToUser(appId, env, clusterName, roleType, user) {
LOW…resources/static/scripts/services/PermissionService.js357 function removeClusterNsRoleFromUser(appId, env, clusterName, roleType, user) {
LOW…urces/static/scripts/services/ReleaseHistoryService.js26 function findReleaseHistoryByNamespace(appId, env, clusterName, namespaceName, page, size) {
LOWdocs/scripts/multiple-language-redirect.js27function findCurrentLanguagePrefix(languagePrefixs, path) {
LOWdocs/scripts/multiple-language-redirect.js77function walkElementInTranslationsListItem(translationsListItem, elementName, visitor) {
LOWdocs/scripts/multiple-language-redirect.js106function resolveLanguagePrefixsFromListItem(translationsListItem) {
LOWdocs/scripts/multiple-language-redirect.js118function changeLinkInTranslationsListItem(currrentPath, translationsListItem) {
LOWdocs/scripts/multiple-language-redirect.js136function generateMultipleLanguagesNavbarPluginByListItemName(name) {
LOWscripts/openapi/collect_portal_frontend_urls.py97def collect_resource_expression(line: str) -> Optional[str]:
LOWscripts/openapi/check_openapi_compatibility_test.py63 def test_allows_additive_paths_and_optional_fields(self):
LOWscripts/openapi/check_openapi_compatibility_test.py75 def test_rejects_removed_operations(self):
LOWscripts/openapi/check_openapi_compatibility_test.py96 def test_rejects_operation_id_changes(self):
LOWscripts/openapi/check_openapi_compatibility_test.py103 def test_rejects_removed_operation_id(self):
LOWscripts/openapi/check_openapi_compatibility_test.py110 def test_parses_quoted_paths_with_non_standard_indentation(self):
LOWscripts/openapi/check_openapi_compatibility_test.py132 def test_rejects_response_schema_changes(self):
LOWscripts/openapi/check_openapi_compatibility_test.py155 def test_rejects_request_schema_changes(self):
LOWscripts/openapi/check_openapi_compatibility_test.py180 def test_rejects_optional_property_removal(self):
LOWscripts/openapi/check_openapi_compatibility_test.py191 def test_rejects_property_schema_changes(self):
LOWscripts/openapi/check_openapi_compatibility_test.py207 def test_rejects_required_field_additions(self):
LOWscripts/openapi/check_openapi_compatibility_test.py218 def test_allows_explicit_compatibility_exceptions(self):
LOWscripts/openapi/collect_portal_frontend_urls_test.py25 def test_collects_url_properties_and_resource_base_paths(self):
LOWscripts/openapi/collect_portal_frontend_urls_test.py88 def test_main_fails_for_invalid_services_dir(self):
21 more matches not shown…
Over-Commented Block66 hits · 66 pts
SeverityFileLineSnippet
LOW.mergify.yml1#
LOW.licenserc.yaml1#
LOWapollo-buildtools/src/main/scripts/deploy_jenkins.sh1#!/bin/bash
LOWapollo-portal/src/test/resources/application.yml1#
LOWapollo-portal/src/test/resources/yaml/case3.yaml1#
LOWapollo-portal/src/test/resources/yaml/case2.yaml1#
LOWapollo-portal/src/test/resources/yaml/case1.yaml1#
LOW…rc/main/resources/application-ldap-openldap-sample.yml1#
LOW…/resources/application-ldap-activedirectory-sample.yml1#
LOW…rc/main/resources/application-ldap-apacheds-sample.yml1#
LOWapollo-portal/src/main/resources/application.yml1#
LOW…-portal/src/main/resources/application-oidc-sample.yml1#
LOWapollo-portal/src/main/scripts/startup.sh1#!/bin/bash
LOWapollo-portal/src/main/scripts/shutdown.sh1#!/bin/bash
LOWapollo-configservice/src/test/resources/application.yml1#
LOWapollo-configservice/src/main/resources/application.yml1#
LOWapollo-configservice/src/main/scripts/startup.sh1#!/bin/bash
LOWapollo-configservice/src/main/scripts/shutdown.sh1#!/bin/bash
LOWapollo-adminservice/src/test/resources/application.yml1#
LOWapollo-adminservice/src/main/resources/application.yml1#
LOWapollo-adminservice/src/main/scripts/startup.sh1#!/bin/bash
LOWapollo-adminservice/src/main/scripts/shutdown.sh1#!/bin/bash
LOWdocs/charts/index.yaml1# Copyright 2024 Apollo Authors
LOWapollo-common/src/main/resources/application.yaml1#
LOWscripts/build.sh1#!/bin/sh
LOWscripts/openapi/collect_portal_frontend_urls.py1#!/usr/bin/env python3
LOWscripts/openapi/check_openapi_compatibility.py1#!/usr/bin/env python3
LOWscripts/openapi/check_openapi_compatibility_test.py1#!/usr/bin/env python3
LOWscripts/openapi/collect_portal_frontend_urls_test.py1#!/usr/bin/env python3
LOWscripts/openapi/bash/openapi.sh1#!/bin/bash
LOWscripts/openapi/bash/openapi.sh21# date 2021-09-12
LOWscripts/openapi/bash/openapi.sh41# APOLLO_OPENAPI_TOKEN: openapi's token
LOWscripts/openapi/bash/openapi.sh61# body
LOWscripts/openapi/bash/openapi.sh141 "name":"${clusterName}",
LOWscripts/openapi/bash/openapi.sh181}
LOWscripts/openapi/bash/openapi.sh281}
LOWscripts/openapi/bash/openapi.sh321
LOWscripts/openapi/bash/openapi-usage-example.sh1#!/bin/bash
LOW.github/FUNDING.yml1#
LOW.github/stale.yml1#
LOW.github/workflows/docker-publish.yml1#
LOW.github/workflows/issue-triage.lock.yml1#
LOW.github/workflows/docker-validation.yml1#
LOW.github/workflows/codeql.yml41 # Prefix the list here with "+" to use these queries and those in the config file.
LOW.github/workflows/openapi-compatibility.yml1#
LOW.github/workflows/license.yml1#
LOW.github/workflows/release-packages.yml1#
LOW.github/workflows/javascript-test.yml1#
LOW.github/workflows/cla.yml1#
LOW.github/workflows/cla.yml41 remote-repository-name: apollo-community
LOW.github/workflows/external-discovery-smoke.yml1#
LOW.github/workflows/portal-login-e2e.yml1#
LOW.github/workflows/code-style-check.yml1#
LOW.github/workflows/build.yml1#
LOW.github/workflows/portal-ui-e2e.yml1#
LOWe2e/scripts/apollo-smoke-lib.sh1#!/usr/bin/env bash
LOWe2e/discovery-smoke/scripts/run-smoke.sh1#!/usr/bin/env bash
LOWe2e/discovery-smoke/scripts/provider.sh1#!/usr/bin/env bash
LOWe2e/portal-e2e/config/application-oidc-e2e.yml1#
LOWe2e/portal-e2e/config/application-ldap-e2e.yml1#
6 more matches not shown…
Verbosity Indicators3 hits · 7 pts
SeverityFileLineSnippet
LOW…lo/portal/component/UserIdentityContextHolderTest.java65 // Step 1: Set authentication type
LOW…lo/portal/component/UserIdentityContextHolderTest.java69 // Step 2: Call clear() method
LOW…lo/portal/component/UserIdentityContextHolderTest.java72 // Step 3: Verify result after clearing (get value via public method)
Self-Referential Comments2 hits · 6 pts
SeverityFileLineSnippet
MEDIUMscripts/openapi/bash/openapi.sh152# Create a namespace of a app.
MEDIUMscripts/openapi/bash/openapi.sh219# Create an item of a namespace.
Fake / Example Data2 hits · 2 pts
SeverityFileLineSnippet
LOWdocs/zh/portal/apollo-open-api-platform.md159 "ownerEmail":"test@test.com",
LOWdocs/en/portal/apollo-open-api-platform.md147 "ownerEmail": "test@test.com",
Unused Imports2 hits · 2 pts
SeverityFileLineSnippet
LOWscripts/openapi/collect_portal_frontend_urls.py18
LOWscripts/openapi/check_openapi_compatibility.py31
Deep Nesting1 hit · 1 pts
SeverityFileLineSnippet
LOWscripts/openapi/check_openapi_compatibility.py150