Home / rabbitmq / rabbitmq-server
Repository Analysis

rabbitmq/rabbitmq-server

Open source RabbitMQ: core server and tier 1 (built-in) plugins

1.9 Likely human-written View on GitHub
1.9
Adjusted Score
1.9
Raw Score
100%
Time Factor
2026-05-30
Last Push
13,679
Stars
JavaScript
Language
163,458
Lines of Code
955
Files
234
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 2HIGH 6MEDIUM 15LOW 211

Pattern Findings

234 matches across 14 categories. Click a row to expand file-level details.

Hyper-Verbose Identifiers67 hits · 80 pts
SeverityFileLineSnippet
LOWselenium/test/amqp.js19function getAmqpsConnectionOptions() {
LOWselenium/test/utils.js57function sanitizeScreenshotFileName (title) {
LOWdeps/rabbitmq_codegen/amqp_codegen.py46def default_spec_value_merger(key, acc, new, ignore_conflicts):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py74 def test_send_receive_in_other_conn(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py92 def test_send_receive_in_other_conn_with_disconnect(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py142 def test_send_with_receipt_tx(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py155 def test_interleaved_receipt_no_receipt(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py171 def test_interleaved_receipt_no_receipt_tx(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py195 def test_interleaved_receipt_no_receipt_inverse(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py274 def test_send_multiple_with_a_large_message(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py306 def test_durable_known_reply_queue(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py368 def do_test_durable_subscription(self, durability_header):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py406 def test_durable_subscription(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py409 def test_durable_subscription_and_legacy_header(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py471 def do_test_durable_subscribe_no_id_and_header(self, header):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py480 def test_durable_subscribe_no_id(self):
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py483 def test_durable_subscribe_no_id_and_legacy_header(self):
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py168 def test_send_without_content_type(self):
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py204 def test_send_without_content_type_binary(self):
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py223 def test_newline_after_nul_and_leading_nul(self):
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py293 def test_message_with_embedded_nulls(self):
LOW…stomp/test/python_SUITE_data/src/connect_disconnect.py119 def test_disconnect_with_receipt(self):
LOW…p/test/python_SUITE_data/src/tls_connect_disconnect.py52 def test_ssl_auth_send_receive(self):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py61 def test_ack_client_individual(self):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py214 def test_nack_without_requeueing(self):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py303 def test_ack_with_id_header_succeeds(self):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py311 def test_ack_without_id_header_fails(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py16 def test_unsubscribe_exchange_destination(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py21 def test_unsubscribe_exchange_destination_with_receipt(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py26 def test_unsubscribe_queue_destination(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py31 def test_unsubscribe_queue_destination_with_receipt(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py36 def test_unsubscribe_exchange_id(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py41 def test_unsubscribe_exchange_id_with_receipt(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py46 def test_unsubscribe_queue_id(self):
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py51 def test_unsubscribe_queue_id_with_receipt(self):
LOW…_stomp/test/python_SUITE_data/src/topic_permissions.py24 def test_publish_authorisation(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py14 def __test_duplicate_consumer_tag_with_headers(self, destination, headers):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py31 def test_duplicate_consumer_tag_with_transient_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py35 def test_duplicate_consumer_tag_with_durable_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py43 def test_invalid_queue_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py46 def test_invalid_empty_queue_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py49 def test_invalid_topic_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py52 def test_invalid_empty_topic_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py55 def test_invalid_exchange_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py58 def test_invalid_empty_exchange_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py61 def test_invalid_default_exchange_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py74 def test_send_missing_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py77 def test_subscribe_missing_destination(self):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py80 def __test_missing_destination(self, command):
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py90 def __test_invalid_destination(self, dtype, content):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/base.py104 def create_subscriber_connection(self, dest):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/base.py235 def wait_for_complete_countdown(self, timeout=5):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/base.py290 def wait_for_complete_countdown(self, timeout=None):
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js927 function getOrCreateAxis(axes, number) {
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js1375 function allocateAxisBoxFirstPhase(axis) {
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js1447 function allocateAxisBoxSecondPhase(axis) {
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js1460 function adjustLayoutForThingsStickingOut() {
LOWdeps/rabbitmq_management/priv/www/js/excanvas.js99 function addNamespacesAndStylesheet(doc) {
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js9039function addToPrefiltersOrTransports( structure ) {
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js9073function inspectPrefiltersOrTransports( structure, options, originalOptions, jqXHR ) {
7 more matches not shown…
Over-Commented Block79 hits · 72 pts
SeverityFileLineSnippet
LOW…_auth_backend_http/examples/docker/nodered/settings.js21module.exports = {
LOW…_auth_backend_http/examples/docker/nodered/settings.js41 // defaults to no timeout
LOW…_auth_backend_http/examples/docker/nodered/settings.js61 // node, set this to true
LOW…_auth_backend_http/examples/docker/nodered/settings.js81
LOW…_auth_backend_http/examples/docker/nodered/settings.js101 // The following property can be used in place of 'httpAdminRoot' and 'httpNodeRoot',
LOW…_auth_backend_http/examples/docker/nodered/settings.js121 // property can be used. See http://nodered.org/docs/security.html for details.
LOW…_auth_backend_http/examples/docker/nodered/settings.js141 // See the comment at the top of this file on how to load the `fs` module used by
LOW…_auth_backend_http/examples/docker/nodered/settings.js161 // details on its contents. The following is a basic permissive set of options:
LOW…_auth_backend_http/examples/docker/nodered/settings.js181 // next();
LOW…_auth_backend_http/examples/docker/nodered/settings.js201 //},
LOW…_auth_backend_http/examples/docker/nodered/settings.js221 //contextStorage: {
LOW…_auth_backend_webapi_dotnet/Properties/AssemblyInfo.cs21
LOW…rabbitmq_prometheus/docker/docker-compose-overview.yml181 # networks:
LOWdeps/rabbitmq_prometheus/docker/prometheus.yml1# https://prometheus.io/docs/prometheus/latest/configuration/configuration/
LOWdeps/rabbitmq_prometheus/docker/grafana/datasources.yml1apiVersion: 1
LOWdeps/rabbitmq_prometheus/docker/grafana/datasources.yml21 # basicAuth:
LOW…src/test/java/com/rabbitmq/stream/ClusterSizeTest.java1// The contents of this file are subject to the Mozilla Public License
LOW…_data/src/test/java/com/rabbitmq/stream/TestUtils.java1// The contents of this file are subject to the Mozilla Public License
LOW…c/test/java/com/rabbitmq/stream/LeaderLocatorTest.java1// The contents of this file are subject to the Mozilla Public License
LOW…ata/src/test/java/com/rabbitmq/stream/FailureTest.java1// The contents of this file are subject to the Mozilla Public License
LOW…data/src/test/java/com/rabbitmq/stream/StreamTest.java1// The contents of this file are subject to the Mozilla Public License
LOW…SUITE_data/src/test/java/com/rabbitmq/stream/Host.java1// The contents of this file are subject to the Mozilla Public License
LOW…_data/src/test/java/com/rabbitmq/stream/TestUtils.java1// The contents of this file are subject to the Mozilla Public License
LOW…E_data/src/test/java/com/rabbitmq/stream/HttpTest.java1// The contents of this file are subject to the Mozilla Public License
LOWdeps/rabbitmq_management/priv/www/css/main.css21#debug { position: fixed; bottom: 0; z-index: 9; width: 100%; text-align: center; padding: 0; margin: 0; }
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js261
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js281 // }
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js361
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js441 // Removes one or more text strings from the canvas text overlay.
LOWdeps/rabbitmq_management/priv/www/js/excanvas.js1// Copyright 2006 Google Inc.
LOWdeps/rabbitmq_management/priv/www/js/excanvas.js21// * Clipping paths are not implemented.
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.min.js1// -- Sammy.js -- /sammy.js
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js841 // qSA considers elements outside a scoping root when evaluating child or
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js1021 // Known :disabled false positives: fieldset[disabled] > legend:nth-of-type(n+2) :can-disable
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js4301 // In cases where either:
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js41
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js241 // URI paths as opposed to the older default of hash (#) based routing. Because the server
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js461 // The first argument to use should be a function() that is evaluated
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js481 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js521 } else {
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js561 // `route()` is the main method for defining routes within an application.
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js641 del: _routeWrapper('delete'),
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js741 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js761 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js781 after: function(callback) {
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js801 // function checkLoggedIn(callback) {
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js821 // }
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js841 // console.log('chain1');
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js861 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js881 // },function(context,next) {
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js901 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js921 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js941 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js961 //
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1081 },
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1201
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1221 // app.contextMatchesOptions(context, /^path/); //=> false
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1301 // Delegates to the `location_proxy` to set the current location.
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1321 // this.swap = function(content, callback) {
LOWdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1521 // queue. If the context is `waiting` (meaning an async operation is happening)
19 more matches not shown…
Unused Imports52 hits · 52 pts
SeverityFileLineSnippet
LOWdeps/rabbitmq_codegen/amqp_codegen.py8
LOWdeps/rabbitmq_codegen/amqp_codegen.py8
LOWdeps/rabbitmq_codegen/amqp_codegen.py10
LOWdeps/amqp10_common/codegen.py3
LOWdeps/amqp10_common/codegen.py6
LOW…d_http/examples/rabbitmq_auth_backend_django/manage.py14
LOW…end_django/rabbitmq_auth_backend_django/auth/models.py1
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py8
LOW…bitmq_stomp/test/python_SUITE_data/src/destinations.py9
LOW…tomp/test/python_SUITE_data/src/x_queue_type_stream.py12
LOW…tomp/test/python_SUITE_data/src/x_queue_type_quorum.py12
LOW…bbitmq_stomp/test/python_SUITE_data/src/reliability.py9
LOW…bbitmq_stomp/test/python_SUITE_data/src/reliability.py10
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py13
LOW…q_stomp/test/python_SUITE_data/src/implicit_connect.py8
LOW…q_stomp/test/python_SUITE_data/src/implicit_connect.py11
LOW…q_stomp/test/python_SUITE_data/src/implicit_connect.py13
LOW…bitmq_stomp/test/python_SUITE_data/src/x_queue_name.py8
LOW…bitmq_stomp/test/python_SUITE_data/src/x_queue_name.py9
LOW…bitmq_stomp/test/python_SUITE_data/src/transactions.py8
LOW…bitmq_stomp/test/python_SUITE_data/src/transactions.py9
LOW…bitmq_stomp/test/python_SUITE_data/src/transactions.py11
LOW…stomp/test/python_SUITE_data/src/connect_disconnect.py8
LOW…stomp/test/python_SUITE_data/src/connect_disconnect.py13
LOW…p/test/python_SUITE_data/src/tls_connect_disconnect.py15
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py11
LOW…rabbitmq_stomp/test/python_SUITE_data/src/test_util.py10
LOW…bbitmq_stomp/test/python_SUITE_data/src/test_runner.py12
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py8
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py9
LOW…bbitmq_stomp/test/python_SUITE_data/src/unsubscribe.py12
LOW…_stomp/test/python_SUITE_data/src/topic_permissions.py10
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py8
LOW…ps/rabbitmq_stomp/test/python_SUITE_data/src/errors.py9
LOW…q_stomp/test/python_SUITE_data/src/queue_properties.py8
LOW…q_stomp/test/python_SUITE_data/src/queue_properties.py9
LOW…q_stomp/test/python_SUITE_data/src/queue_properties.py12
LOW…bbitmq_stomp/test/python_SUITE_data/src/redelivered.py8
LOW…bbitmq_stomp/test/python_SUITE_data/src/redelivered.py9
LOW…bbitmq_stomp/test/python_SUITE_data/src/redelivered.py11
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/base.py10
LOWdeps/rabbitmq_stomp/examples/python/stream-receiver.py2
LOWdeps/rabbit_common/codegen.py10
LOWdeps/rabbit_common/codegen.py11
LOWdeps/rabbit_common/codegen.py13
LOWdeps/rabbit_common/codegen.py15
LOWdeps/rabbit_common/codegen.py16
LOW…trust_store_django/rabbitmq_trust_store_django/urls.py17
LOW…django/rabbitmq_trust_store_django/trust_store/apps.py1
LOW…jango/rabbitmq_trust_store_django/trust_store/tests.py1
LOW…jango/rabbitmq_trust_store_django/trust_store/views.py4
LOW…jango/rabbitmq_trust_store_django/trust_store/views.py5
Decorative Section Separators10 hits · 30 pts
SeverityFileLineSnippet
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh68# --------------------------------------------------------------------
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh70# --------------------------------------------------------------------
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh159# --------------------------------------------------------------------
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh161# --------------------------------------------------------------------
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh228# --------------------------------------------------------------------
MEDIUM…s/tools/terraform/direct-vms/templates/setup-erlang.sh230# --------------------------------------------------------------------
MEDIUM…auth_backend_ldap/test/system_SUITE_data/init-slapd.sh65# --------------------------------------------------------------------
MEDIUM…auth_backend_ldap/test/system_SUITE_data/init-slapd.sh67# --------------------------------------------------------------------
MEDIUM…auth_backend_ldap/test/system_SUITE_data/init-slapd.sh108# --------------------------------------------------------------------
MEDIUM…auth_backend_ldap/test/system_SUITE_data/init-slapd.sh110# --------------------------------------------------------------------
Hallucination Indicators2 hits · 20 pts
SeverityFileLineSnippet
CRITICALdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js8086jQuery.each( jQuery.expr.match.bool.source.match( /\w+/g ), function( _i, name ) {
CRITICAL…ps/rabbitmq_management/priv/www/js/jquery-3.5.1.min.js2!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):f
Synthetic Comment Markers3 hits · 15 pts
SeverityFileLineSnippet
HIGHrelease-notes/README-1.7.1.txt48- add proper headers to auto-generated code
HIGHrelease-notes/README-1.7.1.txt67- add proper headers to auto-generated code
HIGHrelease-notes/README-1.7.1.txt87- add proper headers to auto-generated code
Cross-Language Confusion3 hits · 15 pts
SeverityFileLineSnippet
HIGHdeps/amqp10_common/codegen.py65 print("""encode(undefined) -> null;
HIGHdeps/rabbit_common/codegen.py223 print(" {F%s, R%s} = if P%s =:= 0 -> {undefined, R%s}; true -> ?%s_VAL(R%s, L%s, V%s, X%s) end," % \
HIGHdeps/rabbit_common/codegen.py414bitvalue(undefined) -> 0.
AI Slop Vocabulary3 hits · 9 pts
SeverityFileLineSnippet
MEDIUM…itmq_prometheus/docker/docker-compose-dist-metrics.yml15 # https://network.pivotal.io/products/rabbitmq/
MEDIUMdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js10821// understands anonymous AMD modules. A named AMD is safest and most robust
MEDIUMdeps/rabbitmq_management/priv/www/js/sammy-0.7.6.js1493 // rendering and interpolation seamless even when dealing with asynchronous
Deep Nesting7 hits · 7 pts
SeverityFileLineSnippet
LOWdeps/rabbitmq_stomp/test/generate_python_tests.py43
LOWdeps/rabbitmq_stomp/test/generate_python_tests.py70
LOW…s/rabbitmq_stomp/test/python_SUITE_data/src/parsing.py89
LOWdeps/rabbit_common/codegen.py101
LOWdeps/rabbit_common/codegen.py157
LOWdeps/rabbit_common/codegen.py179
LOWdeps/rabbit_common/codegen.py236
Excessive Try-Catch Wrapping3 hits · 4 pts
SeverityFileLineSnippet
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py275 except Exception:
MEDIUMdeps/rabbitmq_stomp/test/python_SUITE_data/src/ack.py272def tearDown(self):
LOWdeps/rabbitmq_stomp/test/python_SUITE_data/src/base.py129 except Exception as inst:
Self-Referential Comments1 hit · 3 pts
SeverityFileLineSnippet
MEDIUMdeps/rabbitmq_stomp/examples/python/stream-receiver.py14# Define a STOMP connection and port
Overly Generic Function Names2 hits · 2 pts
SeverityFileLineSnippet
LOW…s/rabbitmq_management/priv/www/js/jquery.flot-0.8.1.js1030 function processData() {
LOWdeps/rabbitmq_management/priv/www/js/jquery-3.5.1.js4401function getData( data ) {
Slop Phrases1 hit · 2 pts
SeverityFileLineSnippet
LOW.github/workflows/oci-make.yaml1# When changing the OTP version, make sure to update all references:
Redundant / Tautological Comments1 hit · 2 pts
SeverityFileLineSnippet
LOWdeps/rabbitmq_auth_backend_oauth2/demo/setup.sh16# Set permission to list signing keys