temporalio / background-checks Goto Github PK
View Code? Open in Web Editor NEWSample application using Temporal
License: Apache License 2.0
Sample application using Temporal
License: Apache License 2.0
The company should be able to cancel a background check via cli.
./bgc-cancel <id>
All details that are realistically required to verify an employment should be contained in the email sent to the researcher.
I've worked around the lack of a stable port for the dataconverter container in our docker compose setup for now, but once the next tctl version is available we should replace the hack with --port
.
I would like to explore the sample app and verify that list filters work, but get an internal server error instead.
Cannot execute a filter expression because standard visibility is not enabled.
$ cd background-checks
$ ./start
$ ./run-cli bgc-company list --email [email protected]
2023/08/17 13:59:37 request error: Internal Server Error: invalid query: unable to convert filter expression: unable to convert left side of "CandidateEmail = '[email protected]'": filter by 'CandidateEmail' not supported for standard visibility
MacOs Ventura 13.5
Intel i9
Using the default docker compose project included in the repo.
Cullys-MBP:background-checks cullywakelin$ ./run-cli bgc-company cancel --email [email protected] --id 75a05d0a-903f-4ec9-852b-09deee46f412
2022/01/20 21:30:43 Internal Server Error: Workflow executionsRow not found. WorkflowId: [email protected], RunId: 75a05d0a-903f-4ec9-852b-09deee46f412
I would like to view the status of all current workflow executions, but the status is empty.
I started a new workflow and then listed the running workflows, but the status and email are empty.
$ cd background-checks
$ ./start
$ ./run-cli bgc-company --email [email protected]
Created check
$ ./run-cli bgc-company list
Background Checks:
ID: <RUN_ID> Email: Status:
MacOS 13.5 Ventura
Intel i9
commit: 0425e40
Currently, the only Candidate Details that are entered by the Company or Candidate are the Candidate's email address.
To enable background checks for a set of sample Candidates, we also need to be able to accept:
Proposed solution is for Full Name, Employer and SSN to be entered by Candidate during Accept step.
Prometheus instrumentation library for Go applications
CVE | Severity | CVSS | Dependency | Type | Fixed in | Remediation Available |
---|---|---|---|---|---|---|
CVE-2022-21698 | High | 7.5 | github.com/prometheus/client_golang-v1.11.0 | Direct | v1.11.1 | ❌ |
Prometheus instrumentation library for Go applications
Dependency Hierarchy:
Found in base branch: main
client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of promhttp.InstrumentHandler*
middleware except RequestsInFlight
; not filter any specific methods (e.g GET) before middleware; pass metric with method
label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown method
. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the method
label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.
Publish Date: 2022-02-15
URL: CVE-2022-21698
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-cg3q-j54f-5p7p
Release Date: 2022-02-15
Fix Resolution: v1.11.1
CVE | Severity | CVSS | Dependency | Type | Fixed in | Remediation Available |
---|---|---|---|---|---|---|
CVE-2022-28948 | High | 7.5 | github.com/go-yaml/yaml-496545a6307b2a7d7a710fd516e5e16e8ab62dbc | Transitive | N/A | ❌ |
YAML support for the Go language.
Dependency Hierarchy:
Found in base branch: main
An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input.
Publish Date: 2022-05-19
URL: CVE-2022-28948
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-hp87-p4gw-j4gq
Release Date: 2022-05-19
Fix Resolution: 3.0.0
Prometheus instrumentation library for Go applications
Library home page: https://proxy.golang.org/github.com/prometheus/client_golang/@v/v1.11.0.zip
CVE | Severity | CVSS | Dependency | Type | Fixed in (github.com/prometheus/Client_golang-v1.11.0 version) | Remediation Available |
---|---|---|---|---|---|---|
CVE-2022-21698 | High | 7.5 | github.com/prometheus/Client_golang-v1.11.0 | Direct | v1.11.1 | ❌ |
Prometheus instrumentation library for Go applications
Library home page: https://proxy.golang.org/github.com/prometheus/client_golang/@v/v1.11.0.zip
Dependency Hierarchy:
Found in base branch: main
client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of promhttp.InstrumentHandler*
middleware except RequestsInFlight
; not filter any specific methods (e.g GET) before middleware; pass metric with method
label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown method
. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the method
label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.
Publish Date: 2022-02-15
URL: CVE-2022-21698
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-cg3q-j54f-5p7p
Release Date: 2022-02-15
Fix Resolution: v1.11.1
Need to build mock database and SSN parameter entry for more complete candidate lookups.
Prometheus instrumentation library for Go applications
Library home page: https://proxy.golang.org/github.com/prometheus/client_golang/@v/v1.11.0.zip
CVE | Severity | CVSS | Dependency | Type | Fixed in (github.com/prometheus/client_goLang-v1.11.0 version) | Remediation Available |
---|---|---|---|---|---|---|
CVE-2022-21698 | High | 7.5 | github.com/prometheus/client_goLang-v1.11.0 | Direct | v1.11.1 | ❌ |
Prometheus instrumentation library for Go applications
Library home page: https://proxy.golang.org/github.com/prometheus/client_golang/@v/v1.11.0.zip
Dependency Hierarchy:
Found in base branch: main
client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of promhttp.InstrumentHandler*
middleware except RequestsInFlight
; not filter any specific methods (e.g GET) before middleware; pass metric with method
label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown method
. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the method
label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.
Publish Date: 2022-02-15
URL: CVE-2022-21698
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-cg3q-j54f-5p7p
Release Date: 2022-02-15
Fix Resolution: v1.11.1
I follow the instructions and it fails on step: ./run-cli bgc-company start --email [email protected] --package full
When starting workflow, I get an error message: Internal Server Error: search attribute CandidateEmail is not defined
Clone repo:
git clone [email protected]:temporalio/background-checks.git
cd background-checks
./start
and try to run:
./run-cli bgc-company start --email [email protected] --package full
Latest code from main branch, commit ref f06ca38
Currently our code does not allow an SSN trace to come back as invalid. We should expect this to be possible and cleanly handle this as part of the report. This will be similar to the case when a check was declined, just one step further on.
EmploymentVerified
should move to EmploymentVerificationWorkflowResult
alongside EmploymentVerificationCompleted
rather than living in (a duplicated copy of) CandidateDetails
.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.