{"id":28389035,"url":"https://github.com/jeffrom/job-manager","last_synced_at":"2026-05-17T00:37:39.723Z","repository":{"id":37861703,"uuid":"291764197","full_name":"jeffrom/job-manager","owner":"jeffrom","description":"a job coordination server","archived":false,"fork":false,"pushed_at":"2023-03-07T03:49:40.000Z","size":1363,"stargazers_count":1,"open_issues_count":15,"forks_count":2,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-09-03T02:35:03.313Z","etag":null,"topics":["background","golang","jobs","postgresql"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jeffrom.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-08-31T16:14:38.000Z","updated_at":"2023-02-08T11:41:36.000Z","dependencies_parsed_at":"2024-06-20T09:21:05.174Z","dependency_job_id":"6742336e-a67f-432e-9794-4a3484d7835f","html_url":"https://github.com/jeffrom/job-manager","commit_stats":null,"previous_names":[],"tags_count":59,"template":false,"template_full_name":null,"purl":"pkg:github/jeffrom/job-manager","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jeffrom%2Fjob-manager","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jeffrom%2Fjob-manager/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jeffrom%2Fjob-manager/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jeffrom%2Fjob-manager/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jeffrom","download_url":"https://codeload.github.com/jeffrom/job-manager/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jeffrom%2Fjob-manager/sbom","scorecard":{"id":514373,"data":{"date":"2025-08-11","repo":{"name":"github.com/jeffrom/job-manager","commit":"5d95bb8a92793340e99e1eba92d6649777e57d60"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.7,"checks":[{"name":"Code-Review","score":0,"reason":"Found 1/16 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:28","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:29","Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/goreleaser.yaml:1","Warn: no topLevel permission defined: .github/workflows/test.yaml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/goreleaser.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/goreleaser.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/goreleaser.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/goreleaser.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/goreleaser.yaml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/goreleaser.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yaml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/jeffrom/job-manager/test.yaml/master?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1","Warn: goCommand not pinned by hash: .github/workflows/test.yaml:74","Warn: pipCommand not pinned by hash: .github/workflows/test.yaml:104","Info:   0 out of  16 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   1 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   1 goCommand dependencies pinned","Info:   0 out of   1 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v0.4.6 not signed: https://api.github.com/repos/jeffrom/job-manager/releases/62376061","Warn: release artifact v0.4.5 not signed: https://api.github.com/repos/jeffrom/job-manager/releases/62374033","Warn: release artifact v0.4.4 not signed: https://api.github.com/repos/jeffrom/job-manager/releases/61566926","Warn: release artifact v0.4.3 not signed: https://api.github.com/repos/jeffrom/job-manager/releases/61561704","Warn: release artifact v0.4.2 not signed: https://api.github.com/repos/jeffrom/job-manager/releases/52851329","Warn: release artifact v0.4.6 does not have provenance: https://api.github.com/repos/jeffrom/job-manager/releases/62376061","Warn: release artifact v0.4.5 does not have provenance: https://api.github.com/repos/jeffrom/job-manager/releases/62374033","Warn: release artifact v0.4.4 does not have provenance: https://api.github.com/repos/jeffrom/job-manager/releases/61566926","Warn: release artifact v0.4.3 does not have provenance: https://api.github.com/repos/jeffrom/job-manager/releases/61561704","Warn: release artifact v0.4.2 does not have provenance: https://api.github.com/repos/jeffrom/job-manager/releases/52851329"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":7,"reason":"SAST tool detected but not run on all commits","details":["Info: SAST configuration detected: CodeQL","Warn: 0 commits out of 15 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"11 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2025-3770","Warn: Project is vulnerable to: GO-2024-2606 / GHSA-7jwh-3vrq-q3m8 / GHSA-mrww-27vc-gghv","Warn: Project is vulnerable to: GO-2024-2605 / GHSA-m7wr-2xf7-cm9p","Warn: Project is vulnerable to: GO-2021-0356 / GHSA-8c26-wmh5-6g9v","Warn: Project is vulnerable to: GO-2024-2961","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GO-2022-0493 / GHSA-p782-xgp4-8hr8","Warn: Project is vulnerable to: GO-2022-1059 / GHSA-69ch-w2m2-3vjp","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-20T01:24:52.303Z","repository_id":37861703,"created_at":"2025-08-20T01:24:52.303Z","updated_at":"2025-08-20T01:24:52.303Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":276180606,"owners_count":25598698,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-20T02:00:10.207Z","response_time":63,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["background","golang","jobs","postgresql"],"created_at":"2025-05-31T00:12:09.036Z","updated_at":"2025-09-21T01:10:09.694Z","avatar_url":"https://github.com/jeffrom.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# job-manager\n\njob-manager is a server that coordinates the execution of distributed jobs over HTTP.\n\nThe gist is that consumers poll the server for jobs, and send job status back upon completion. Checkins can be used to annotate the job with data pre-completion. A command-line tool, jobctl, is provided for queue administration. That with labels and JSON Schema validation support processors that undergo a lot of iteration well.\n\nI made this initially to experiment with some higher-level features in a job queue, but it should be capable of comparable performance to other postgres-backed job queues. In most cases, the job server itself is not a performance bottleneck compared to the backend, however multiple replicas can be run for high availability.\n\n## install\n\nUsing go:\n\n```bash\n$ go get github.com/jeffrom/job-manager/...\n```\n\nVia docker: `docker pull jeffrom/job-manager`\n\nOr download a github release.\n\n### migrations\n\nTo run postgresql migrations:\n\n```sh\n$ jobctl migrate\n```\n\nMigrations are implemented using [golang-migrate](https://github.com/golang-migrate/migrate). Note that this command requests a job-manager server to execute the migration using its configured credentials. This requires additional permissions in Postgresql.\n\n## features\n\n* cli controller\n* straightforward Rest API (protobuf support)\n* job server is stateless / scales horizontally\n* implement your own backend, comes with postgresql\n* in-memory backend for development \u0026 testing purposes (not really working right now)\n* claim windows: only dequeue to consumers with matching claims for a configurable duration\n* check ins\n* store result data\n* queue labels\n* versioned queue configuration\n* easily update queue configurations via cicd with `jobctl apply`\n* json schema validation for job arguments, data, results\n* the usual job queue features: retries, exponential backoff, durability\n* graceful shutdown\n* not fast, predictable 😎\n\n## clients\n\nThere is a go client:\n\n```bash\n$ go get github.com/jeffrom/job-manager/mjob\n```\n\n## develop\n\nTo start a development server on your laptop:\n\n```bash\n$ make dev\n```\n\nRun tests and static analysis:\n\n```bash\n$ make test\n$ make lint\n```\n\nPoint jobctl at the local server dev proxy:\n\n```\n$ export HOST=:4000\n$ jobctl stats\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjeffrom%2Fjob-manager","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjeffrom%2Fjob-manager","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjeffrom%2Fjob-manager/lists"}