Home / coollabsio / coolify
Repository Analysis

coollabsio/coolify

An open-source, self-hostable PaaS alternative to Vercel, Heroku & Netlify that lets you easily deploy static sites, databases, full-stack applications and 280+ one-click services on your own servers.

2.4 Likely human-written View on GitHub
2.4
Adjusted Score
2.4
Raw Score
100%
Time Factor
2026-05-29
Last Push
56,196
Stars
PHP
Language
296,284
Lines of Code
2084
Files
473
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 2HIGH 1MEDIUM 64LOW 406

Pattern Findings

473 matches across 12 categories. Click a row to expand file-level details.

Hyper-Verbose Identifiers292 hits · 299 pts
SeverityFileLineSnippet
LOWdatabase/seeders/DevelopmentRailpackExamplesSeeder.php366 private function ensureDevelopmentPrerequisitesExist(): void
LOWdatabase/seeders/DevelopmentRailpackExamplesSeeder.php425 private function ensurePublicGithubSourceExists(): void
LOW.cursor/skills/laravel-actions/references/job.md392public function getJobDeleteWhenMissingModels(): bool
LOWdocker/coolify-realtime/terminal-utils.js78export function normalizeHostForAuthorization(host) {
LOWbootstrap/helpers/shared.php241function validateDatabasesBackupInput(string $input): string
LOWbootstrap/helpers/shared.php782function extractYamlEnvironmentComments(string $rawYaml): array
LOWbootstrap/helpers/shared.php850function extractEnvVarCommentFromYamlLine(string $line): ?array
LOWbootstrap/helpers/shared.php965function extractCommentFromRemainder(string $remainder): ?string
LOWbootstrap/helpers/shared.php1092function queryDatabaseByUuidWithinTeam(string $uuid, string $teamId)
LOWbootstrap/helpers/shared.php1340function parseCommandFromMagicEnvVariable(Str|string $key): Stringable
LOWbootstrap/helpers/shared.php1771function isAnyDeploymentInprogress()
LOWbootstrap/helpers/shared.php3464function convertToKeyValueCollection($environment)
LOWbootstrap/helpers/shared.php3605function defaultNginxConfiguration(string $type = 'static'): string
LOWbootstrap/helpers/shared.php3762function addPreviewDeploymentSuffix(string $name, int $pull_request_id = 0): string
LOWbootstrap/helpers/shared.php3767function generateDockerComposeServiceName(mixed $services, int $pullRequestId = 0): Collection
LOWbootstrap/helpers/shared.php3942function shouldSkipPasswordConfirmation(): bool
LOWbootstrap/helpers/shared.php3967function verifyPasswordConfirmation(mixed $password, ?Component $component = null): bool
LOWbootstrap/helpers/shared.php3992function extractHardcodedEnvironmentVariables(string $dockerComposeRaw): Collection
LOWbootstrap/helpers/shared.php4122function resolveSharedEnvironmentVariables(?string $value, $resource): ?string
LOWbootstrap/helpers/subscriptions.php33function isSubscriptionOnGracePeriod()
LOWbootstrap/helpers/subscriptions.php59function getStripeCustomerPortalSession(Team $team)
LOWbootstrap/helpers/subscriptions.php73function allowedPathsForUnsubscribedAccounts()
LOWbootstrap/helpers/subscriptions.php85function allowedPathsForBoardingAccounts()
LOWbootstrap/helpers/subscriptions.php93function allowedPathsForInvalidAccounts()
LOWbootstrap/helpers/subscriptions.php104function updateStripeCustomerEmail(Team $team, string $newEmail): void
LOWbootstrap/helpers/domains.php142function checkIfDomainIsAlreadyUsedViaAPI(Collection|array $domains, ?string $teamId = null, ?string $uuid = null)
LOWbootstrap/helpers/docker.php14function getCurrentApplicationContainerStatus(Server $server, int $id, ?int $pullRequestId = null, ?bool $includePullreq
LOWbootstrap/helpers/docker.php63function getCurrentServiceContainerStatus(Server $server, int $id): Collection
LOWbootstrap/helpers/docker.php130function checkMinimumDockerEngineVersion($dockerVersion)
LOWbootstrap/helpers/docker.php184function generateApplicationContainerName(Application $application, $pull_request_id = 0)
LOWbootstrap/helpers/docker.php256function generateServiceSpecificFqdns(ServiceApplication|Application $resource)
LOWbootstrap/helpers/docker.php651function generateLabelsApplication(Application $application, ?ApplicationPreview $preview = null): array
LOWbootstrap/helpers/docker.php848function isDatabaseImageWithContext(string $imageName, array $serviceConfig): bool
LOWbootstrap/helpers/docker.php990function convertDockerRunToCompose(?string $custom_docker_run_options = null)
LOWbootstrap/helpers/docker.php1158function generateCustomDockerRunOptionsForDatabases($docker_run_options, $docker_compose, $container_name, $network)
LOWbootstrap/helpers/docker.php1463function injectDockerComposeBuildArgs(string $command, string $buildArgsString): string
LOWbootstrap/helpers/services.php28function extractBalancedBraceContent(string $str, int $startPos = 0): ?array
LOWbootstrap/helpers/services.php71function splitOnOperatorOutsideNested(string $content): ?array
LOWbootstrap/helpers/services.php139function getFilesystemVolumesFromServer(ServiceApplication|ServiceDatabase|Application $oneService, bool $isInit = false
LOWbootstrap/helpers/services.php423function parseServiceEnvironmentVariable(string $key): array
LOWbootstrap/helpers/services.php469function applyServiceApplicationPrerequisites(Service $service): void
LOWbootstrap/helpers/github.php67function generateGithubInstallationToken(GithubApp $source)
LOWbootstrap/helpers/github.php165function getGithubCommitRangeFiles(?GithubApp $source, string $owner, string $repo, string $beforeSha, string $afterSha)
LOWbootstrap/helpers/github.php191function getGithubPullRequestFiles(?GithubApp $source, string $owner, string $repo, int $pullRequestId): array
LOWbootstrap/helpers/proxy.php17function isDockerPredefinedNetwork(string $network): bool
LOWbootstrap/helpers/proxy.php24function collectProxyDockerNetworksByServer(Server $server)
LOWbootstrap/helpers/proxy.php39function collectDockerNetworksByServer(Server $server)
LOWbootstrap/helpers/proxy.php165function extractCustomProxyCommands(Server $server, string $existing_config): array
LOWbootstrap/helpers/proxy.php221function generateDefaultProxyConfiguration(Server $server, array $custom_commands = [])
LOWbootstrap/helpers/proxy.php399function getExactTraefikVersionFromContainer(Server $server): ?string
LOWbootstrap/helpers/proxy.php442function getTraefikVersionFromDockerCompose(Server $server): ?string
LOWbootstrap/helpers/timezone.php12function formatDateInServerTimezone($date, $server = null)
LOWbootstrap/helpers/parsers.php27function validateDockerComposeForInjection(string $composeYaml): void
LOWbootstrap/helpers/parsers.php110function validateVolumeStringForInjection(string $volumeString): void
LOWbootstrap/helpers/api.php176function removeUnnecessaryFieldsFromRequest(Request $request)
LOWbootstrap/helpers/sudo.php23function parseCommandsByLineForSudo(Collection $commands, Server $server): array
LOWapp/Traits/HasNotificationSettings.php54 public function isNotificationTypeEnabled(string $channel, string $event): bool
LOWapp/Traits/EnvironmentVariableProtection.php15 protected function isProtectedEnvironmentVariable(string $key): bool
LOWapp/Traits/EnvironmentVariableProtection.php27 protected function isEnvironmentVariableUsedInDockerCompose(string $key, ?string $dockerCompose): array
LOWapp/Traits/HasConfiguration.php9 public function generateConfigurationFiles(): void
232 more matches not shown…
Decorative Section Separators30 hits · 93 pts
SeverityFileLineSnippet
MEDIUMtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php6// ─── Malformed Variables ───────────────────────────────────────────────────────
MEDIUMtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php86// ─── Edge Cases with Braces and Special Characters ─────────────────────────────
MEDIUMtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php178// ─── Deeply Nested Defaults ────────────────────────────────────────────────────
MEDIUMtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php263// ─── Backwards Compatibility ───────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseCredentialValidationPatternTest.php6// ── DB_IDENTIFIER_PATTERN ─────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseCredentialValidationPatternTest.php45// ── DB_PASSWORD_PATTERN ───────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseCredentialValidationPatternTest.php83// ── Rule helpers ──────────────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseCredentialValidationPatternTest.php131// ── Validator integration ─────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseHealthcheckCommandInjectionTest.php21// ─── PostgreSQL ──────────────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseHealthcheckCommandInjectionTest.php41// ─── KeyDB ────────────────────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseHealthcheckCommandInjectionTest.php58// ─── Dragonfly ────────────────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseHealthcheckCommandInjectionTest.php75// ─── ClickHouse ───────────────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseHealthcheckCommandInjectionTest.php92// ─── Verify unaffected databases still use their safe patterns ────────────────
MEDIUMtests/Unit/DatabaseSslCredentialEscapingTest.php10// ── executeInDocker + escapeshellarg chown pattern ────────────────────────────
MEDIUMtests/Unit/DatabaseSslCredentialEscapingTest.php90// ── MongoDB JS init script JSON-escaping ──────────────────────────────────────
MEDIUMtests/Unit/DatabaseSslCredentialEscapingTest.php137// ── Healthcheck CMD exec-form structure (no shell parsing) ────────────────────
MEDIUMtests/Unit/DatabaseCredentialDirtyValidationTest.php5// ── databasePasswordRules ─────────────────────────────────────────────────────
MEDIUMtests/Unit/DatabaseCredentialDirtyValidationTest.php47// ── databaseIdentifierRules ───────────────────────────────────────────────────
MEDIUMtests/Feature/StorageApiTest.php64// ──────────────────────────────────────────────────────────────
MEDIUMtests/Feature/StorageApiTest.php66// ──────────────────────────────────────────────────────────────
MEDIUMtests/Feature/StorageApiTest.php288// ──────────────────────────────────────────────────────────────
MEDIUMtests/Feature/StorageApiTest.php290// ──────────────────────────────────────────────────────────────
MEDIUMtemplates/test-database-detection.yaml9 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml11 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml115 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml117 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml256 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml258 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml333 # =============================================================================
MEDIUMtemplates/test-database-detection.yaml335 # =============================================================================
Redundant / Tautological Comments39 hits · 69 pts
SeverityFileLineSnippet
LOWdocker/coolify-realtime/soketi-entrypoint.sh4# Check if the first argument is 'watch'
LOWother/nightly/install.sh62# Check if environment variables were explicitly provided
LOWother/nightly/install.sh76 # Check if systemctl is available
LOWother/nightly/install.sh85 # Check if service command is available
LOWother/nightly/install.sh140# Check if daemon.json exists and extract existing address pool configuration
LOWother/nightly/install.sh151 # Check if environment variables were explicitly provided
LOWother/nightly/install.sh156 # Check if force override is enabled
LOWother/nightly/install.sh273# Check if the OS is manjaro, if so, change it to arch
LOWother/nightly/install.sh278# Check if the OS is Endeavour OS, if so, change it to arch
LOWother/nightly/install.sh283# Check if the OS is Cachy OS, if so, change it to arch
LOWother/nightly/install.sh288# Check if the OS is Asahi Linux, if so, change it to fedora
LOWother/nightly/install.sh293# Check if the OS is popOS, if so, change it to ubuntu
LOWother/nightly/install.sh298# Check if the OS is linuxmint, if so, change it to ubuntu
LOWother/nightly/install.sh303#Check if the OS is zorin, if so, change it to ubuntu
LOWother/nightly/install.sh700 # Check if we need to update log settings
LOWother/nightly/install.sh742 # Check if address pools were changed
LOWother/nightly/upgrade.sh66# Check if custom compose file exists
LOWother/nightly/upgrade.sh144# Check if Docker config file exists
LOWscripts/install.sh62# Check if environment variables were explicitly provided
LOWscripts/install.sh76 # Check if systemctl is available
LOWscripts/install.sh85 # Check if service command is available
LOWscripts/install.sh140# Check if daemon.json exists and extract existing address pool configuration
LOWscripts/install.sh151 # Check if environment variables were explicitly provided
LOWscripts/install.sh156 # Check if force override is enabled
LOWscripts/install.sh273# Check if the OS is manjaro, if so, change it to arch
LOWscripts/install.sh278# Check if the OS is Endeavour OS, if so, change it to arch
LOWscripts/install.sh283# Check if the OS is Cachy OS, if so, change it to arch
LOWscripts/install.sh288# Check if the OS is Asahi Linux, if so, change it to fedora
LOWscripts/install.sh293# Check if the OS is popOS, if so, change it to ubuntu
LOWscripts/install.sh298# Check if the OS is linuxmint, if so, change it to ubuntu
LOWscripts/install.sh303#Check if the OS is zorin, if so, change it to ubuntu
LOWscripts/install.sh700 # Check if we need to update log settings
LOWscripts/install.sh742 # Check if address pools were changed
LOWscripts/upgrade.sh66# Check if custom compose file exists
LOWscripts/upgrade.sh153# Check if Docker config file exists
LOWtemplates/compose/calcom.yaml40 # Set this to 1 if you don't want Cal to collect anonymous usage
LOWtemplates/compose/dify.yaml494 # Check if the certificate and key files for the specified domain exist
LOWtemplates/compose/matrix-synapse-with-sqlite.yaml34 # Set public_baseurl to actual deployment URL (may differ from server_name)
LOWtemplates/compose/electricsql.yaml9## Set DATABASE_URL to an existing Postgres instance with logical replication enabled.
AI Slop Vocabulary24 hits · 68 pts
SeverityFileLineSnippet
MEDIUM…/monaco-editor-0.52.2/min/vs/language/css/cssWorker.js73This is used to produce an effect that is known as tate-ch\u016B-yoko (\u7E26\u4E2D\u6A2A) in Japanese, or as \u76F4\u66
MEDIUM…onaco-editor-0.52.2/min/vs/language/html/htmlWorker.js259 * To learn about this declaration in Firefox for Mobile, see [this article](https://developer.mozilla.org/en-US/do
MEDIUM…onaco-editor-0.52.2/min/vs/language/html/htmlWorker.js270Default mode, which indicates no preference for the decoding mode. The browser decides what is best for the user.`}},{na
MEDIUM…onaco-editor-0.52.2/min/vs/language/html/htmlWorker.js270Default mode, which indicates no preference for the decoding mode. The browser decides what is best for the user.`}},{na
MEDIUM…onaco-editor-0.52.2/min/vs/language/html/htmlWorker.js288**Note**: Sites that automatically play audio (or videos with an audio track) can be an unpleasant experience for users,
MEDIUMtemplates/compose/nextcloud-with-mysql.yaml2# slogan: NextCloud is a self-hosted, open-source platform that provides file storage, collaboration, and communication
MEDIUMtemplates/compose/nextcloud-with-postgres.yaml2# slogan: NextCloud is a self-hosted, open-source platform that provides file storage, collaboration, and communication
MEDIUMtemplates/compose/observium.yaml2# slogan: Observium is a comprehensive network monitoring platform designed to deliver powerful monitoring capabilities,
MEDIUMtemplates/compose/gitlab.yaml2# slogan: The all-in-one DevOps platform for seamless collaboration and continuous delivery.
MEDIUMtemplates/compose/pingvinshare.yaml3# slogan: A self-hosted file sharing platform that combines lightness and beauty, perfect for seamless and efficient fil
MEDIUMtemplates/compose/nextcloud.yaml2# slogan: NextCloud is a self-hosted, open-source platform that provides file storage, collaboration, and communication
MEDIUMtemplates/compose/cloudflare-ddns.yaml2# slogan: A small, feature-rich, and robust Cloudflare DDNS updater.
MEDIUMtemplates/compose/sparkyfitness.yaml2# slogan: SparkyFitness is a comprehensive fitness tracking and management application designed to help users monitor th
MEDIUMtemplates/compose/unleash-with-postgresql.yaml4# tags: unleash,feature flags,feature toggles,ab testing,open source
MEDIUMtemplates/compose/unleash-with-postgresql.yaml5# logo: svgs/unleash.svg
MEDIUMtemplates/compose/nextcloud-with-mariadb.yaml2# slogan: NextCloud is a self-hosted, open-source platform that provides file storage, collaboration, and communication
MEDIUMtemplates/compose/pingvinshare-with-clamav.yaml3# slogan: A self-hosted file sharing platform that combines lightness and beauty, perfect for seamless and efficient fil
MEDIUMtemplates/compose/unleash-without-database.yaml4# tags: unleash,feature flags,feature toggles,ab testing,open source
MEDIUMtemplates/compose/unleash-without-database.yaml5# logo: svgs/unleash.svg
MEDIUMtemplates/compose/logto.yaml2# slogan: A comprehensive identity solution covering both the front and backend, complete with pre-built infrastructure
MEDIUMtemplates/compose/logto.yaml19 # Or, you can leverage it for local testing.
MEDIUMtemplates/compose/cloudbeaver.yaml2# slogan: CloudBeaver is a lightweight web application designed for comprehensive data management.
MEDIUMtemplates/compose/mixpost.yaml2# slogan: Mixpost is a robust and versatile social media management software, designed to streamline social media operat
MEDIUMtemplates/compose/edgedb.yaml3# slogan: An open-source database designed as a spiritual successor to SQL and the relational paradigm. Powered by the P
Verbosity Indicators32 hits · 62 pts
SeverityFileLineSnippet
LOWbootstrap/helpers/docker.php1318 // Step 1: Escape backslashes first (must be done before other escaping)
LOWbootstrap/helpers/docker.php1321 // Step 2: Escape double quotes
LOWbootstrap/helpers/docker.php1324 // Step 3: Escape backticks (command substitution)
LOWbootstrap/helpers/docker.php1327 // Step 4: Escape invalid $ patterns while preserving valid variable references
LOWapp/Livewire/Server/New/ByHetzner.php37 // Step 1: Token selection
LOWapp/Livewire/Server/New/ByHetzner.php40 // Step 2: Server configuration
LOWapp/Actions/Server/CleanupDocker.php93 // Step 1: Always prune dangling images (untagged)
LOWapp/Actions/User/DeleteUserTeams.php185 // In Stripe, we need to check if the customer email matches the user's email
LOWapp/Actions/Application/CleanupPreviewDeployment.php50 // Step 1: Cancel all active deployments for this PR and kill helper containers
LOWapp/Actions/Application/CleanupPreviewDeployment.php57 // Step 2: Stop and remove all running PR containers
LOWapp/Actions/Application/CleanupPreviewDeployment.php64 // Step 3: Find or use provided preview, then dispatch cleanup job for thorough cleanup
LOWapp/Jobs/DatabaseBackupJob.php324 // Step 1: Create local backup
LOWapp/Jobs/DatabaseBackupJob.php425 // Step 2: Upload to S3 if enabled (independent of local backup)
LOWapp/Jobs/DatabaseBackupJob.php442 // Step 3: Update status and send notifications based on results
LOWapp/Jobs/ApplicationDeploymentJob.php2806 // Step 1: Generate build plan with railpack prepare
LOWapp/Jobs/ApplicationDeploymentJob.php2833 // Step 2: Build image using docker buildx with railpack frontend.
LOWapp/Jobs/ApplicationDeploymentJob.php2864 // Step 3: If static, copy built assets into nginx image
LOWtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php322 // Step 1: Extract outer content
LOWtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php327 // Step 2: Split on outer operator
LOWtests/Unit/EnvironmentVariableParsingEdgeCasesTest.php333 // Step 3: Find all nested variables in default
LOWtests/Unit/NestedEnvironmentVariableParsingTest.php167 // Step 1: Extract outer variable content
LOWtests/Unit/NestedEnvironmentVariableParsingTest.php171 // Step 2: Split on operator
LOWtests/Unit/NestedEnvironmentVariableParsingTest.php177 // Step 3: Extract nested variable
LOWtests/Unit/LogViewerXssSecurityTest.php208 // Step 1: Server-side escaping (PHP)
LOWtests/Unit/LogViewerXssSecurityTest.php212 // Step 2: Stored in data-log-content attribute
LOWtests/Unit/LogViewerXssSecurityTest.php215 // Step 3: Client-side getDisplayText() decodes HTML entities
LOWtests/Unit/LogViewerXssSecurityTest.php219 // Step 4: x-text renders as textContent (NOT innerHTML)
LOWtests/Unit/LogViewerXssSecurityTest.php224 // Step 5: Highlighting via CSS class
LOWtests/Feature/ServerManagerJobShouldRunNowTest.php63 // Step 1: 15:00 — not due for midnight cron, but seeds cache
LOWtests/Feature/ServerManagerJobShouldRunNowTest.php69 // Step 2: Next day at 00:05 — delayed 5 minutes past midnight
LOWtests/Feature/ScheduledJobManagerShouldRunNowTest.php126 // Step 1: 10:00 — not due, but seeds cache with previousDue (02:00 today)
LOWtests/Feature/ScheduledJobManagerShouldRunNowTest.php130 // Step 2: Next day at 02:03 — delayed 3 minutes past cron.
Over-Commented Block31 hits · 31 pts
SeverityFileLineSnippet
LOWdocker-compose-maxio.dev.yml121 mailpit:
LOWdocker-compose-maxio.dev.yml161 # pull_policy: always
LOWcliff.toml1# git-cliff ~ default configuration file
LOWcliff.toml41# render body even when there are no releases to process
LOWbootstrap/helpers/parsers.php2561 // Preserve empty strings and null values with correct Docker Compose semantics:
LOWapp/Http/Middleware/CanUpdateResource.php21use Illuminate\Support\Facades\Gate;
LOWapp/Http/Middleware/CanUpdateResource.php41 // } elseif ($request->route('database_uuid')) {
LOWapp/Http/Middleware/CanUpdateResource.php61 // } elseif ($request->route('project_uuid')) {
LOWapp/Actions/Server/CleanupDocker.php101 })->implode('|');
LOWapp/Console/Commands/Emails.php181 'database_id' => $db->id,
LOWconfig/purify.php121 // 'disk' => env('FILESYSTEM_DISK', 'local'),
LOWconfig/constants.php121 // Used for Traefik version checks and other future server check jobs
LOWother/nightly/install.sh1#!/bin/bash
LOWtests/Pest.php61// {
LOWtests/Unit/ApplicationComposeEditorLoadTest.php61 // 5. BUT component property is never updated, so Monaco editor stays empty
LOWtests/Unit/LogViewerXssSecurityTest.php221 // Result: Browser displays '<script>alert("XSS")</script>' as visible text
LOWtests/Unit/LogViewerXssSecurityTest.php261 expect($escaped)->toContain('onerror');
LOWtests/Unit/LogViewerXssSecurityTest.php341 // 4. Beyond triple encoding: Likely malicious or severely misconfigured
LOWtests/Unit/LogViewerXssSecurityTest.php381 // Without limit:
LOWscripts/install.sh1#!/bin/bash
LOWscripts/railpack-smoke.sh1#!/usr/bin/env bash
LOWtemplates/compose/posthog.yaml2021 # command: sh -c "python manage.py migrate && python manage.py migrate_clickhouse && python manage.py run_async_migr
LOWtemplates/compose/calcom.yaml1# ignore: true
LOWtemplates/compose/zep.yaml61 target: /app/config.yaml
LOWtemplates/compose/zep.yaml141 log:
LOWtemplates/compose/zep.yaml161 # <current_summary>{{.PrevSummary}}</current_summary>
LOWtemplates/compose/glances.yaml21 test: ["CMD", "curl", "-f", "http://localhost:61208"]
LOWtemplates/compose/supabase.yaml381 plugins:
LOWtemplates/compose/supabase.yaml441 config:
LOWtemplates/compose/supabase.yaml1241 - GOTRUE_SMS_AUTOCONFIRM=${ENABLE_PHONE_AUTOCONFIRM:-true}
LOWtemplates/compose/cap.yaml1# documentation: https://cap.so
Hallucination Indicators2 hits · 30 pts
SeverityFileLineSnippet
CRITICALpublic/js/apexcharts.js7 "use strict"; function t(t, e) { var i = Object.keys(t); if (Object.getOwnPropertySymbols) { var a = Object.getOwnPr
CRITICALpublic/js/apexcharts.js15 function () { function t(t) { t.remember("_draggable", this), this.el = t } t.prototype.init = function (t, e) {
Slop Phrases8 hits · 16 pts
SeverityFileLineSnippet
MEDIUMconfig/telescope.php131 | a request or task is executed. Feel free to customize this list.
LOWpublic/js/apexcharts.js7 "use strict"; function t(t, e) { var i = Object.keys(t); if (Object.getOwnPropertySymbols) { var a = Object.getOwnPr
LOW…/monaco-editor-0.52.2/min/vs/language/css/cssWorker.js32`),[{language:"html",value:r}]}doPrint(e,t){for(let r of e)this.doPrintElement(r,t),r.children&&this.doPrint(r.children,
MEDIUM…onaco-editor-0.52.2/min/vs/language/html/htmlWorker.js306**Usage note:** Do not use this attribute, as it has been deprecated. The [\`<caption>\`](https://developer.mozilla.org/
LOWtemplates/compose/posthog.yaml1171 Regexps are not aligned: don't forget to add ^ and $. Also don't forget to escape dot (.)
MEDIUMtemplates/compose/wordpress-with-mysql.yaml2# slogan: WordPress is open source software you can use to create a beautiful website, blog, or app.
MEDIUMtemplates/compose/wordpress-without-database.yaml2# slogan: WordPress is open source software you can use to create a beautiful website, blog, or app.
MEDIUMtemplates/compose/wordpress-with-mariadb.yaml2# slogan: WordPress is open source software you can use to create a beautiful website, blog, or app.
Self-Referential Comments5 hits · 14 pts
SeverityFileLineSnippet
MEDIUMapp/Models/Server.php352 "# This file is generated by Coolify, do not edit it manually.\n".
MEDIUMapp/Models/Server.php568 "# This file is automatically generated by Coolify.\n".
MEDIUMother/nightly/install.sh705 # Create a configuration without address pools to preserve existing ones
MEDIUMscripts/install.sh705 # Create a configuration without address pools to preserve existing ones
MEDIUMtemplates/test-database-detection.yaml2# This file contains various services to test the isDatabaseImage() function
Fake / Example Data8 hits · 8 pts
SeverityFileLineSnippet
LOW…sor/skills/laravel-best-practices/rules/http-client.md140 'name' => 'John Doe',
LOW…s/laravel-best-practices/rules/events-notifications.md43Notification::route('mail', 'admin@example.com')->notify(new SystemAlert());
LOWtests/Unit/Notifications/Channels/EmailChannelTest.php20 $user2 = new User(['email' => 'admin@example.com']);
LOW…nts/skills/laravel-best-practices/rules/http-client.md140 'name' => 'John Doe',
LOW…s/laravel-best-practices/rules/events-notifications.md43Notification::route('mail', 'admin@example.com')->notify(new SystemAlert());
LOW…ude/skills/laravel-best-practices/rules/http-client.md140 'name' => 'John Doe',
LOW…s/laravel-best-practices/rules/events-notifications.md43Notification::route('mail', 'admin@example.com')->notify(new SystemAlert());
LOWtemplates/compose/hatchet.yaml15 # Default credentials are "admin@example.com" and "Admin123!!"
Synthetic Comment Markers1 hit · 5 pts
SeverityFileLineSnippet
HIGHCONTRIBUTING.md221- **No AI-Generated Code**: Do not submit code generated by AI tools without fully understanding and verifying it. AI-ge
Example Usage Blocks1 hit · 2 pts
SeverityFileLineSnippet
LOWscripts/railpack-smoke.sh17# Usage: