AntiPattern
Misconfigured Allowlists and Policies
config-allowlist-policy-mismatch
Security-related configuration inputs—like allowlisted IP CIDRs, WebSocket/CORS origin patterns, and Java security policy files—fail closed or behave unexpectedly when semicolons, ports, or defaults are wrong, causing traffic to be blocked or policy parsing errors during deployment and development.