Thank you, unfortunately we have a multiple of repositories with multiple runs that use this action so checking the logs one by one will be hard. Any idea how to get all logs?
Thank you
also the secrets will be published as double base 64 encoded, so it will just look like a string of random chars at the end of the changed-files action in the log.
The Celery Organization on github had a security breach which has led to organizational activity halting. A number of contributions to the Celery project (apparently) have been reversed.
In case anyone is wondering where the next Celery release was.
As far as I understand it, they wouldn't be able to advertise with US companies in the US so it's a lot of cost for no benefit. Unless they're hosting all that bandwidth for an altruistic reason..
I’ll turn it down if further research shows I don’t want to work there? Why upfront my research if I’ll be ghosted anyway? Turning down interviews because “circumstances have changed” is hardly unusual
Ghost jobs on one side, ghost applications on the other. Some people will just send automated applications everywhere, every day, and check for responses. That leads to ghost responses, and the cycle continues.
Responding to someone to say you got their message but have changed your mind isn’t ghosting. Job hunting would be less miserable if rejections happened in a reasonable time frame
Frankly, seriously consider a career change. The ladder has been pulled up for entry-level positions due to AI, interest-rates, etc. This will come back and bite us as an industry, but it’ll be 10 years from now and most people can’t wait that long.
I can’t speak for everyone, but 3000+ applicants for a single opening is typical at my org. The odds of any given individual getting in are essentially zero. Referrals get priority over everyone else, even candidates that are on-paper better qualified.
It sucks for everyone involved, especially for job hunters. But from the hiring side, truthfully, there’s no end in sight.
My 5 year plan is to move to the EU, but it's a process. You're not going to be doing it as your next job hop from the US if you haven't been planning for it.
The trick is to get a masters or MBA in the country where you want to live. Germany and Netherlands are excellent for this. You can find lots of jobs with no local language requirements.
The fun part is that I went the security engineer route instead of SDE/SWE. It has some pros and cons, but seems like it's one of the "high demand" roles that gets more traction looking at others who have moved abroad.
I also have friends and family in Netherlands, France, and UK who help me keep tabs on how things are going in various places and where might be better locations to target for an American with a technical background looking to just up and leave the US.
Bunch of services that can do captchas now. It’d maybe lessen the load on employers but then job seeking becomes pay to play. The candidate who can afford one of those services + automation beats out those who can’t. It’s already an arms race of sorts.
We don't even have the job posted publicly anywhere and we get >100 submissions per day. Many are duplicates. I've found some that with some minor research turn out to be foreign organized crime. A large number of them had the exact same cover letter with changes in the names and past jobs.
Not only is it difficult to find candidates that actually fit the job role, it's hard to go through any that are even real people.
I've told many friends of mine to use connections and not online job postings because it's basically impossible right now with the automated resume submission companies.
And then the candidate management tools such as lever told me that no, every one of those candidates that applied were real people -- even when I provided proof that at least 40 of them were linked to a single organized crime group out of China.
It seems that many processes, from interviews to real work, are increasingly manipulated. I've noticed a pattern with candidates employed by certain consulting companies, especially in Texas and New Jersey. These companies often recruit low-cost labor from India, craft fake resumes, and submit them to platforms like LinkedIn.
During interviews, candidates use tools like HDMI dual-screen setups, ChatGPT, Otter AI, or Fathom AI to cheat and secure jobs. These consulting firms even fabricate green card verifications and other documents, enabling them to crack most interviews unless the candidate is exceptionally unskilled.
Once hired, these companies often delegate the actual work to individuals in India, paying them as little as $500 while profiting $4,000–$5,000 per month from the arrangement.
We uncovered this issue when we began conducting on-site interviews. While these candidates can handle medium-level LeetCode problems during virtual evaluations, they struggle with basic tasks, like implementing a LinkedList or solving simple LeetCode problems, in person.
Alarmingly, these consulting companies are becoming more sophisticated over time. This raises a critical question: how can genuinely experienced candidates compete in such a landscape?
I keep holding out hope that one day my totally genuine, slightly rusty, slightly nervous, takes all 40 minutes to solve the Leetcode medium style will be seen as so refreshing and honest I’ll be an insta-hire.
They are taking advantage of the incompetence at the workplace you're at. That's just what business is and has always been. If you're a fool, you'll be separated from your money.
Unfortunately so many people lie about experience that you need to so some sort of whiteboard test just to see if the candidate really is fluent in the language they are claiming 5 years experience with. It can be a really simple test.
In my two decades of experience, I've never seen another software engineer implement a linked list or even use a linked list. There are better, and more interesting, questions to be asking.
I personally wouldn't expect someone to implement one (end cases easy to mess up if they are stressed), but writing a function to reverse one (foreach, pop front, push front) is enough to catch the liars. You can argue about how often a std::list vs std::vector is a performance win, but I'd run a mile from any developer who wasn't highly familiar with the basic data structures provided by any language they are claiming to be fluent in.
The only real requirements to "never use a linked list" are a) use a language where some kind of contiguous-storage-based sequence (array, vector, whatever you want to call it; Python calls it a list, even) is built in (or in the standard library); plus b) not ever need to remove O(1) values from the middle of a sequence in O(1) time while preserving order.
But arguably, a candidate who hasn't ever had to contemplate the concept of "linked list" but can derive the necessary ideas on the spot given the basic design, has some useful talents.
I've done this. It can be hit or miss. Get a great team with a strong lead and you'll love them. Unfortunately there's quite a bit of opportunity over there so once you've trained them up, they're always looking for their next (better paying) gig with their new skills. It's rare if folks last past a year on your team.
There are so many incredibly talented software engineers in India that want to stay in India for family/cultural reasons. The best setups I have seen have one very reliable senior person who experience working in EU/NA, then returned home. They can help with the cultural barriers with more junior hires. Further, if you pay 20% more than your competition, you can get way better candidates. My experience is also pretty similar with offshore teams in China, but their English skills are worse (on average).
>A large number of them had the exact same cover letter with changes in the names and past jobs.
I mean when I write a cover letter I take the cover letter I took the last time and change a couple of names and that's it.
Why do I want the job? I want the job because I do work for money, I don't have some idea that your SaaS is really giving me anything that any of the others I've worked at in the past didn't give me - no company means anything to me aside from having reasonably interesting problems to work on and hopefully not onerous working environment.
