{"id":13492104,"url":"https://github.com/slime-io/slime","last_synced_at":"2026-01-14T21:43:03.444Z","repository":{"id":37394766,"uuid":"331236836","full_name":"slime-io/slime","owner":"slime-io","description":"An intelligent ServiceMesh manager based on Istio","archived":false,"fork":false,"pushed_at":"2025-02-26T02:56:13.000Z","size":154869,"stargazers_count":426,"open_issues_count":29,"forks_count":79,"subscribers_count":14,"default_branch":"master","last_synced_at":"2025-03-28T09:38:40.503Z","etag":null,"topics":["cloudnative","istio","kubernetes","microservice","servicemesh"],"latest_commit_sha":null,"homepage":"https://slime-io.github.io/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/slime-io.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING_GUILDLINES.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":"supported-release.md","governance":null,"roadmap":"ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-01-20T08:11:38.000Z","updated_at":"2025-03-18T02:54:20.000Z","dependencies_parsed_at":"2023-11-14T10:26:44.134Z","dependency_job_id":"c8dbd8a7-d2ed-41e6-a21e-055a36e70037","html_url":"https://github.com/slime-io/slime","commit_stats":null,"previous_names":[],"tags_count":47,"template":false,"template_full_name":null,"purl":"pkg:github/slime-io/slime","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slime-io%2Fslime","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slime-io%2Fslime/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slime-io%2Fslime/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slime-io%2Fslime/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/slime-io","download_url":"https://codeload.github.com/slime-io/slime/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slime-io%2Fslime/sbom","scorecard":{"id":831691,"data":{"date":"2025-08-11","repo":{"name":"github.com/slime-io/slime","commit":"043e38df95fa5c65e17fb4b12d8382ce8389afd4"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.9,"checks":[{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":8,"reason":"Found 17/20 approved changesets -- score normalized to 8","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: containerImage not pinned by hash: boot/Dockerfile:1: pin your Docker image by updating quay.io/operator-framework/helm-operator:v1.10.0 to quay.io/operator-framework/helm-operator:v1.10.0@sha256:d214b9ef7816a38739ca9aa43bdbffb261e79ce9773641f1aa2ca1dafdef338d","Warn: containerImage not pinned by hash: build/Dockerfile:1: pin your Docker image by updating registry.access.redhat.com/ubi8/ubi-minimal:latest to registry.access.redhat.com/ubi8/ubi-minimal:latest@sha256:395dec18e7ba913157b1ecf2fd696d701ef834fd77054fffdb7eb678f864eb9e","Warn: containerImage not pinned by hash: docker/Dockerfile.build-tools:1: pin your Docker image by updating golang:1.20.0-bullseye to golang:1.20.0-bullseye@sha256:c04e94c05b90347616893cfe487cce0581904e46289a869ad871e1e50ec8b43d","Warn: containerImage not pinned by hash: framework/Dockerfile:2","Warn: containerImage not pinned by hash: framework/Dockerfile:22: pin your Docker image by updating gcr.io/distroless/static:nonroot to gcr.io/distroless/static:nonroot@sha256:cdf4daaf154e3e27cfffc799c16f343a384228f38646928a1513d925f473cb46","Warn: containerImage not pinned by hash: modules/example/Dockerfile:3: pin your Docker image by updating ubuntu:focal to ubuntu:focal@sha256:8feb4d8ca5354def3d8fce243717141ce31e2c428701f6682bd2fafe15388214","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/bundle-all/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/bundle-hango/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/lazyload/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/lazyload/cmd/envoyproxy/Dockerfile:1: pin your Docker image by updating envoyproxy/envoy:v1.26-latest to envoyproxy/envoy:v1.26-latest@sha256:aa7f16bd856930a2604f1f1b77b8dcc22988d593461e8c119d08f23a7e8276f6","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/lazyload/cmd/proxy/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/limiter/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/meshregistry/Dockerfile:4","Warn: containerImage not pinned by hash: staging/src/slime.io/slime/modules/plugin/Dockerfile:4","Warn: downloadThenRun not pinned by hash: docker/Dockerfile.build-tools:34-45","Info:   0 out of  14 containerImage dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"25 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2025-3372 / GHSA-6wxm-mpqj-6jpf","Warn: Project is vulnerable to: GO-2024-2454 / GHSA-pvcr-v8j8-j5q3","Warn: Project is vulnerable to: GO-2024-2632 / GHSA-hj3v-m684-v259","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GO-2024-2687 / GHSA-4v7x-pqxf-cx7m","Warn: Project is vulnerable to: GO-2024-3333","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2023-2048 / GHSA-6xv5-86q9-7xr8","Warn: Project is vulnerable to: GO-2022-0962 / GHSA-7hfp-qfw3-5jxh","Warn: Project is vulnerable to: GO-2022-1165 / GHSA-53c4-hhmh-vw5q","Warn: Project is vulnerable to: GO-2022-1166 / GHSA-67fx-wx78-jx33","Warn: Project is vulnerable to: GO-2022-1167 / GHSA-6rx9-889q-vv2r","Warn: Project is vulnerable to: GO-2023-1547 / GHSA-pwcw-6f5g-gxf8","Warn: Project is vulnerable to: GO-2024-2554 / GHSA-v53g-5gjp-272r","Warn: Project is vulnerable to: GO-2024-2575 / GHSA-r53h-jv2g-vpx6","Warn: Project is vulnerable to: GO-2025-3601 / GHSA-4hfp-h4cw-hj8p","Warn: Project is vulnerable to: GO-2025-3602 / GHSA-5xqw-8hwv-wg92","Warn: Project is vulnerable to: GO-2025-3802 / GHSA-557j-xg8c-q2mm","Warn: Project is vulnerable to: GHSA-9h84-qmv7-982p","Warn: Project is vulnerable to: GHSA-f9f8-9pmf-xv68"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-23T17:56:14.392Z","repository_id":37394766,"created_at":"2025-08-23T17:56:14.392Z","updated_at":"2025-08-23T17:56:14.392Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28436180,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-14T21:32:52.117Z","status":"ssl_error","status_checked_at":"2026-01-14T21:32:33.442Z","response_time":107,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cloudnative","istio","kubernetes","microservice","servicemesh"],"created_at":"2024-07-31T19:01:03.127Z","updated_at":"2026-01-14T21:43:03.421Z","avatar_url":"https://github.com/slime-io.png","language":"Go","funding_links":[],"categories":["Go","Service Mesh"],"sub_categories":[],"readme":"- [智能网格管理器](#智能网格管理器)\n  - [为什么选择Slime](#为什么选择slime)\n  - [架构](#架构)\n  - [教程](#教程)\n  - [编译构建slime镜像](#编译构建slime镜像)\n  - [贡献代码](#贡献代码)\n  - [谁在使用Slime](#谁在使用slime)\n  - [交流](#交流)\n  - [证书](#证书)\n  - [行为准则](#行为准则)\n\n# 智能网格管理器\n\n[English](./README_EN.md)\n\n![slime-logo](media/slime_logo.png)\n\n [![Go Report Card](https://goreportcard.com/badge/github.com/slime-io/slime)](https://goreportcard.com/report/github.com/slime-io/slime) [![License](https://img.shields.io/badge/License-Apache%202.0-green.svg)](https://github.com/slime-io/slime/blob/master/LICENSE) ![GitHub release (latest by date)](https://img.shields.io/github/v/release/slime-io/slime?color=green)\n\n---\n\nSlime 定位是服务网格智能管理器，构建在服务网格之上。Slime 专注于以无侵入、智能化方式扩展并增强服务网格的核心功能（流量治理、安全性、可观测性）、性能、稳定性与运维性。Slime 简化业务接入与使用服务网格，并在生产环境大规模稳定运行服务网格提供管理保障。此外，Slime 通过精心设计的扩展机制，使业务不需要对服务网格基础框架进行修改，即可为服务网格赋予智能化使用与运维能力。\n\n## 为什么选择Slime\n\n服务网格作为新一代微服务架构，实现了业务逻辑和微服务治理逻辑的解耦，降低了微服务的开发与运维成本。但我们在帮助业务团队使用服务网格，并进行生产落地的过程中，发现现有服务网格平台仍然存在着许多问题：\n\n- 有些功能缺失或使用门槛太高，导致业务无法顺利接入；\n- 大规模业务集群场景下，存在许多稳定性风险；\n- 管理员对服务网格的管理与运维困难：需要修改服务网格基础框架来解决问题。这样会改变基础框架的原有逻辑，无法合入社区版本，为开发者长期维护服务网格制造了很多困难。\n\n为此，我们开发了很多的服务网格周边模块，解决了这些问题，保证运行在服务网格之上的企业业务能够平稳运行，并且设计的扩展机制不需要侵入框架原生代码。为了回馈社区，我们系统整理了解决共性问题的核心模块，开源出来，这便有了 Slime 项目。\n\n该项目是基于 k8s-operator 实现的，**可以无缝对接 Istio，无需任何的定制化改造**。\n\nSlime 核心能力包括智能流量管理、智能运维管理、智能扩展管理：\n\n- **智能流量管理**：通过业务流量中的特征内容，升级服务网格流量治理能力，为业务提供更精细化和及时的治理功能  —— \n  - [自适应限流](./staging/src/slime.io/slime/modules/limiter)：实现了本地限流，同时可以结合监控信息自动调整限流策略，填补了传统服务网格限流功能的短板\n  - 智能熔断降级\n  - 流量染色\n\n- **智能运维管理**：结合服务网格架构下的组件与业务特征，提供更精准、可视化的运维能力和性能稳定性增强 ——\n  - [配置懒加载](./staging/src/slime.io/slime/modules/lazyload)：无须配置SidecarScope，自动按需加载配置和服务发现信息 ，解决了全量推送的问题。服务调用关系的来源支持Prometheus或者Accesslog\n  - [网格（服务）仓库](./staging/src/slime.io/slime/modules/meshregistry)：帮助istio快速集成各种服务注册中心\n  - 文件分发管理（filemanager，后续提供）\n  - 命令行交互 [i9s](https://github.com/slime-io/i9s)\n  - 巡检（patrol）\n  - 排障工具（tracetio）\n\n- **智能插件管理**：针对服务网格缺少高效的插件管理工具的问题，提供批量插件管理能力，简化服务网格数据面插件管理的难度\n  - [Http插件管理](./staging/src/slime.io/slime/modules/plugin)：使用新的的CRD pluginmanager/envoyplugin包装了可读性及可维护性差的envoyfilter，使得插件扩展更为便捷。\n\n目前我们开源了自适应限流、配置懒加载、网格（服务）仓库、i9s、Http插件管理，后续我们会开源更多的功能模块。\n\n\n## 架构\n\nSlime架构主要分为三大块：\n\n1. slime-boot，部署Slime（slime-modules和slime-framework）的Operator组件。\n2. slime-modules，Slime的核心线程，感知SlimeCRD并转换为IstioCRD，并触发内置的其他逻辑。\n3. slime-framework，作为底座，为modules提供通用的基础能力。\n\n其架构图如下：\n\n![slime架构图](media/slime-arch-v3.png)\n\nSlime支持聚合打包，可以将任意模块聚合成一个镜像。所以，Slime可以以一个Deployment形式部署，避免组件过多。\n\n## 教程\n\n[slime网站](https://slime-io.github.io/)\n\n[Slime镜像信息](https://github.com/slime-io/slime/wiki/Slime-Project-Tag-and-Image-Tag-Mapping-Table)\n\n[Slime-boot安装](./doc/zh/slime-boot.md)\n\nSlime-module\n\n- [懒加载使用](./staging/src/slime.io/slime/modules/lazyload/README.md)\n- [插件管理使用](./staging/src/slime.io/slime/modules/plugin/README.md)\n- [自适应限流使用](./staging/src/slime.io/slime/modules/limiter/README.md)\n- [网格（服务）仓库](./staging/src/slime.io/slime/modules/meshregistry/README_CH.md)\n\n[E2E测试教程](./doc/zh/slime_e2e_test_zh.md)\n\n\n## 编译构建slime镜像\n\n具体请参考[编译构建slime镜像](./doc/zh/slime-build.md)\n\n\n## 贡献代码\n\n如果您有兴趣向Slime项目贡献代码，请先阅读 [CONTRIBUTING_GUILDLINES](./CONTRIBUTING_GUILDLINES.md)。\n\n## 谁在使用Slime\n\n我们十分期待你提交你的使用案例，让我们一起来完善这个列表。[#190](https://github.com/slime-io/slime/issues/190)\n\n## 交流\n\n- QQ群: 971298863\n- Slack: [https://slimeslime-io.slack.com/invite](https://join.slack.com/t/slimeslime-io/shared_invite/zt-u3nyjxww-vpwuY9856i8iVlZsCPtKpg)\n- 邮件：slimedotio@gmail.com\n- 其他有用的信息可以查阅我们的官网 [Slime-Home](https://slime-io.github.io/)\n\n## 证书\n\n[Apache-2.0](https://choosealicense.com/licenses/apache-2.0/)\n\n\n## 行为准则\n\n我们遵循 [CNCF Community Code of Conduct](https://github.com/cncf/foundation/blob/master/code-of-conduct.md).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fslime-io%2Fslime","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fslime-io%2Fslime","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fslime-io%2Fslime/lists"}