- Fixed price
- Intermediate
- Est. budget: $650.00
We run a white-label health platform. The core app already exists and is in good shape — passwordless magic-link auth, row-level security / tenant isolation, PHI kept out of analytics and logs, server-side data handling, encryption in transit and at rest. This is not a greenfield build. We need a developer to close a specific, bounded set of HIPAA technical-safeguard gaps and security-test the result. Stack: TypeScript, Next.js (App Router, Server Actions), Supabase (Postgres + RLS), Vercel. What you'll build (quote EACH item separately, not a lump sum) 1. Audit logging (highest priority) Append-only, immutable audit_log table in Postgres (DB triggers/grants block UPDATE/DELETE; RLS insert + scoped select only) A single reusable helper called at every PHI touchpoint: record view, intake submit, checkout, auth issue/consume, admin reads, exports, deletions Acceptance: every PHI view/modify/export/delete + every auth event writes exactly one immutable row (who / what / when / where / success) 2. Rate limiting Applied to login, intake submit, and checkout endpoints. Per-IP and per-email. Postgres-backed (no new external service) Acceptance: over-limit requests return 429; login throttled per email + IP 3. Security headers HSTS (preload), CSP, X-Frame-Options DENY, X-Content-Type-Options, Referrer-Policy, Permissions-Policy CSP must still allow our third-party payment and identity-verification embeds Acceptance: securityheaders.com grade ≥ A, and checkout + verification flows still work end-to-end 4. Idle-session timeout Auto sign-out after N minutes of inactivity on the patient portal; confirm token expiry/refresh config Acceptance: idle session is invalidated and redirected to login 5. Patient data export + secure deletion Admin-initiated export of a single patient's full record (JSON) and a deletion workflow consistent with retention policy. Admin-run is fine — no patient-facing UI needed for v1 Acceptance: given a patient ID, export returns the full record; delete removes it and writes an audit row 6. Monitoring hooks (code portion) Emit structured events for failed logins, rate-limit trips, and audit anomalies (we wire the alerting) Acceptance: events emitted in a consumable, structured shape 7. Admin MFA + RBAC — conditional Only if there is a surface that reads PHI across multiple tenants: TOTP MFA + role checks + separate admin accounts. If no such surface is in scope, mark N/A Out of scope (do not quote) Managed infrastructure (encryption, backups, point-in-time recovery, SSL enforcement, dashboard-level config) — handled on our side All vendor BAAs Risk assessment, incident-response plan, DR plan, policies, training — our paperwork, not engineering Rebuilding anything already in place (listed above) Security testing (part of the deliverable) Per-layer tests for each item An adversarial pass: attempt to bypass rate limits, mutate/forge audit rows, access another tenant's data, inject PHI into analytics or URLs A short written summary of what was tested and the results Deliverables All code as reviewable PRs with tests passing The audit-log SQL migration as a standalone file (we apply it to our live database) A short doc listing every PHI touchpoint instrumented and every security header set Security-test summary Requirements Strong TypeScript + Next.js App Router (Server Actions, middleware) Solid Supabase/Postgres: RLS, triggers, grants, migrations Practical HIPAA technical-safeguards experience (audit controls, access control, integrity, transmission security) CSP tuning with third-party iframes (payments / identity verification a plus) Clean, test-covered work How to apply Quote each of the 7 items separately (line-by-line estimate), not a lump sum. Tell us specifically how you'd guarantee the audit log is immutable, and share one example of prior HIPAA or healthcare-data work.
- Hourly: $70.00 - $85.00
- Expert
- Est. time: More than 6 months, 30+ hrs/week
Company Overview Pay Ready is a leading provider of innovative payment solutions tailored for the property management industry. We help property owners and managers streamline financial processes and accounts receivable functions, including processing current and post-resident rent payments and recoveries. As we integrate Generative AI (GenAI) across our operations, we're seeking a Senior Software Developer to drive the development of AI-powered solutions that enhance both internal workflows and customer-facing applications. Position Overview Joining our team as a Senior Software Developer – Generative AI means being at the forefront of innovation, working on cutting-edge projects that are shaping the future of AI and machine learning. You'll have the opportunity to collaborate with top experts in the field, contributing to groundbreaking research and development that has real-world impact. We offer a dynamic and collaborative work environment where your ideas and contributions are valued, and where you'll have the resources and support needed to bring your vision to life. Being part of our team means embracing a culture that fosters continuous learning and professional growth, with access to ongoing training and development opportunities. You'll work on diverse and challenging projects, gaining valuable experience and expertise that will set you apart in your career. Key Responsibilities - Design and develop AI-driven applications that address both internal operational needs and external client requirements. - Utilize frameworks such as LangGraph and LangSmith to build, orchestrate, and monitor AI workflows. - Implement solutions that integrate seamlessly with existing systems, ensuring reliability and scalability. - Work in tandem with project managers and product owners to understand project scopes, timelines, and deliverables. - Participate in sprint planning, code reviews, and team meetings to ensure alignment and timely delivery of projects. - Provide technical insights and recommendations during the planning and execution phases. - Develop and refine AI models, ensuring they meet performance and accuracy benchmarks. - Monitor and analyze AI application performance, making necessary adjustments to optimize outcomes. -Stay updated with the latest advancements in AI and machine learning to incorporate best practices into development processes.
- Hourly
- Expert
- Est. time: 1 to 3 months, Hours to be determined
We are seeking a Jobber Certified Expert to assist with onboarding and optimizing our use of the platform. The ideal candidate will have experience in project management and customer relationship management, and be able to provide training and support to our team. The role involves setting up workflows, managing client interactions, and ensuring seamless integration with our existing systems. we are a residential and commercial painting company that wants to reduce owner involvement, automate administrative tasks, and create a scalable operation.
- Fixed price
- Expert
- Est. budget: $2,000.00
We are looking for a hands-on senior Python/FastAPI trading-system developer with strong testing, debugging, and broker API experience. This person should be able to work inside an existing codebase, identify what is breaking, fix the issues, and prove the fixes with tests, logs, API output, and dashboard evidence. Ideal experience: • Python backend development • FastAPI • MongoDB • Heroku logs and deployment workflow • React/TypeScript frontend debugging • Alpaca API or similar broker API experience • Trading bot lifecycle experience • Automated testing and regression testing • Market data, candle/bar data, indicators, and timestamp handling • Ability to trace scanner → scoring → decision → order readiness → position state → sell/hold logic This is not a rebuild project. The goal is to test and repair the current system.
- Hourly: $25.00 - $105.00
- Intermediate
- Est. time: Less than 1 month, 30+ hrs/week
We need a freelancer to clean up and organize our Google Tag Manager setup for a Magento-based website, us.sfihealth.com. The work includes reviewing existing tags, triggers, and variables, removing unused or redundant elements, and improving overall structure for better performance and easier maintenance. Experience with Magento and web tracking is important. This is a small, part-time project for someone who can work efficiently and communicate clearly.
- Hourly: $50.00 - $110.00
- Expert
- Est. time: 1 to 3 months, Less than 30 hrs/week
I am building an authentication library and a billing platform in Golang + Postgres. Auth-library is embedded only, while billing can be an embedded-library, and also a stand-alone application. The platform is intended to make it easy for Go-devs to write authentication (users register, OIDC, recover password, etc.), and manage billing their users (various billing providers in addition to Stripe, including crypto). These codebases are mostly written by AI (Claude Code and Codex) but the issue is that these tools suck. The write a lot of slop, and their systems don't work, and I don't trust them. With auth + billing, these are highly sensitive areas where we cannot afford to fuck up. Deliverables are: 1. a list of tasks the LLMs must do to refactor / fix these systems 2. a complete audit of all APIs (the surface areas / shapes that are used as system boundaries) 3. integration tests that will pass, if the LLM's code is correct 4. a complete security audit, to address any vulnerabilities / exploits possible I am only looking to hire someone in California / colorado. I want to work synchronously with them; for every hour you bill we'll be on a call together so that we can maximize communication bandwidth. I live in Denver, but I plan to move to SF soon. I'd be down to work together in person in the future, but for now we'll only be working synchronously-remotely. Human-written applications only. Template or LLM-written responses here will be rejected immediately. Please list your qualifications concisely. Don't say 'I am a Golang expert' say 'I worked at company X, and built system Y in Go which does Z.' Thanks for your time.
- Hourly: $70.00 - $85.00
- Expert
- Est. time: 1 to 3 months, Less than 30 hrs/week
Jaspersoft Integration Developer – Word Document Export We are looking for a developer to build a custom Jaspersoft integration that improves our Word document export capabilities, similar to Aspose. The ideal candidate can evaluate open-source vs. paid API options and deliver a working solution. Required Skills & Experience Proven experience with Jaspersoft Studio / JasperReports Server customization and plugin development Strong Java development skills (Jasper's core integration language) Experience building or extending Jaspersoft export options (custom exporters via the export menu/dropdown) or similar experience Hands-on experience with Word document generation libraries such as: Apache POI Aspose.Words docx4j Experience with PDF-to-Word conversion pipelines using tools such as: LibreOffice headless / LibreOffice UNO API pdf2docx (Python) ilovepdf, Smallpdf, or similar APIs Ability to evaluate and compare open-source vs. paid API solutions (cost, quality, licensing, support) Familiarity with REST API integration for third-party document services Nice to Have Experience with Aspose.Words or similar commercial document SDKs Knowledge of OOXML / .docx format internals Prior work integrating document conversion into enterprise reporting platforms Python or Node.js experience for conversion microservice development Experience with one or more of the following: PDFBox iText / OpenPDF Pandoc OnlyOffice or similar document conversion tools Experience converting between: Jasper report output to PDF PDF to Word/DOCX HTML to Word/DOCX DOCX post-processing and cleanup Deliverables Expected A working Jaspersoft export plugin that adds an improved Word (.docx) export option to the export dropdown menu A documented recommendation on open-source vs. paid API options (with trade-offs) A conversion pipeline (e.g., report → PDF → Word, or direct-to-Word) Clean, maintainable code with setup/deployment documentation What We're Building A replacement for the default Jaspersoft Word exporter that produces cleaner, better-formatted .docx output — with the conversion option accessible directly from the Jaspersoft export menu, just like the built-in PDF and Excel export options.
- Fixed price
- Expert
- Est. budget: $750.00
About Us: We are Crown Paper Converting (crownpaperconverting.com), a premier, high-capacity mill-direct manufacturer of raw paper and industrial packaging materials based in Ontario, Southern California. We focus strictly on high-volume B2B contract sales to regional and national packaging distributors (e.g., Veritiv, Landsberg Orora, Kelly Spicers) and converters. Our current primary push is focused on our specialized single-face division, backed by our dedicated digital storefront: singlefacecorrugatedrolls.com. From our Southern California facility, we convert and manufacture massive quantities of Single-Face Corrugated Rolls (A, B, and E-Flutes), Kraft Paper, Chipboard, Newsprint, and Laminated Solid Fiber. Our core value propositions are direct manufacturer pricing, strict distributor-protection rules (100% blind shipping/private labeling), and a massive local freight cost/lead-time edge for the Southwest market (CA, NV, AZ, UT) over out-of-state competitors. The Project: We are looking for a complete, turnkey outbound cold email campaign manager or agency. We have an raw list of 1,500 Category Managers, Procurement Directors, and Supply Chain Executives exported from Apollo.io. We do NOT want just a copywriter. We are seeking an expert who handles the technical setup from scratch, sanitizes our lead data, guarantees delivery to primary inboxes, and handles lead handoffs. Your Turnkey Responsibilities Include: 1. Technical Infrastructure & Domain Setup (From Scratch): Sourcing and purchasing 2-3 secondary look-alike outreach domains on our behalf (e.g., @crownconverting.com). You will handle the complete technical DNS records configuration from the ground up, including SPF, DKIM, and DMARC setup, link them to an outreach sending platform (e.g., Instantly or Smartlead), and manage the initial 2-week email warm-up sequence. 2. Apollo List Cleaning & Server Verification (Mandatory): You must clean our raw list of 1,500 Apollo contacts before sending a single email. We require you to utilize strict verification tools (e.g., Clay, MillionVerifier, or NeverBounce) to run live SMTP handshakes/pings. You must filter out invalid emails, block "Risky/Catch-All" domains, and guarantee a bounce rate under 2% to protect our new infrastructure. 3. Sales Copywriting: Writing a high-converting 3-part cold email sequence. The copy must lead with our specialized single-face capabilities (singlefacecorrugatedrolls.com) as the immediate hook, while positioning Crown Paper Converting as their local one-stop manufacturer for Kraft and chipboard. 4. Campaign Tracking & Handoff: Actively monitoring campaign data (Delivery Success, Open Rates, Click Rates) and immediately routing any warm replies, quote requests, or interested regional prospects straight to our sales team with full company and title details. Requirements: - Deep, documented experience running end-to-end B2B cold email campaigns, including manual look-alike domain setup and DNS configuration. - Proven history of utilizing professional data-cleansing and waterfall verification techniques on Apollo datasets. - Masterful copywriting skills tailored to corporate procurement agents—strictly professional, clear, and technical (no generic clickbait). To Apply: Please submit a brief proposal explaining your exact workflow for data verification/cleansing to prevent bounces, and how you choose look-alike domains. In your first sentence, please include the phrase "Turnkey Clean Data Infrastructure" so we know you are a professional technical sender who read our requirements.
- Fixed price
- Intermediate
- Est. budget: $1,500.00
I'm an author with an 8-book Christian middle-grade series, The Brave Girls of the Bible Club (ages 8–12), and I'm looking for an editor for the whole series. The series at a glance: Five modern girls discover a magical trunk in their church basement that transports them into the stories of courageous women of the Bible. Each book teaches one real-world skill (courage, leadership, emotional honesty, resilience, identity, gifts, empathy) and ends with a parent–daughter discussion guide. The eight books feature Esther, Deborah, Hannah, Ruth, Mary Magdalene, Priscilla, Miriam, and an ensemble finale. Scope: 8 books, ~4,000–6,000 words each — roughly 38,000 words total Already fully drafted, formatted, and consistent in style (Word/.docx files) Each book: 7–8 chapters plus back matter (discussion guide, journal pages) These manuscripts are already written and in a fixed brand voice. I'm looking for editing and continuity checking, not rewriting. Specifically: Line/copy edit — grammar, clarity, flow, age-appropriate language for 8–12. Series continuity — consistency across all 8 books (character details, the trunk's "rules," recurring phrasing, the deepening faith arc). Scripture accuracy — confirming the biblical retellings and references are handled faithfully. I don't want the text rewritten or "elevated" into a different style, just polished and made consistent. Before I commit to all eight, would you be open to a paid sample edit of one chapter (~1,500 words)? That lets me see your editing style and confirm we're a good fit. If it goes well, I'd then want a bulk quote for the full series (~38,000 words) and your estimated turnaround. A few quick questions: Are you comfortable with middle-grade fiction (not just devotionals/picture books)? Do you work in Word with tracked changes so I can review every edit? What's your rate for the one-chapter sample, and roughly for the full series? The ideal candidate will have experience in Christian content and middle-grade books, ensuring the series is engaging and suitable for the target audience. This is a long-term project requiring a commitment to editing all 8 books.
- Fixed price
- Expert
- Est. budget: $200.00
The flagged item is the Apple reviewer email address in the submission section. Here's the corrected version with that removed: Job Posting — iOS React Native Engineer Needed (Critical Launch Crash) Title: React Native / iOS Engineer — Fix Launch-Blocking Crash Before App Store Submission Project: DuelDeck — real-money skill-based tournament card game, iOS app (React Native 0.84, New Architecture/Fabric enabled) Urgency: High — this is the single blocker preventing App Store submission. The problem The app crashes on every launch, within ~2 seconds, before any screen renders — including on a completely fresh install with no stored data. The crash signature is consistent and has been narrowed down through extensive isolation testing: An Objective-C exception is being thrown inside a TurboModule's synchronous/void method invocation (ObjCTurboModule::performVoidMethodInvocation), on the com.meta.react.turbomodulemanager.queue. Because this exception crosses a layer the New Architecture bridge cannot safely propagate, the entire process terminates (SIGABRT/abort()), regardless of any JavaScript-level error handling. What's already been ruled out (do not re-test these) Through direct binary-search isolation (disable component → clean rebuild → fresh install → measure time-to-crash), the following have been conclusively excluded as the cause: @react-native-community/geolocation PayPalCheckout SDK and our custom card payment native module A legacy unused Apple Pay native module Build architecture (tested both x86_64/Rosetta and native arm64 — same crash on both) react-native-mmkv (tested with MMKV fully bypassed, forced to AsyncStorage) What needs to happen Isolate the exact native module causing the crash. Strongest remaining candidates, in priority order: lottie-react-native, react-native-svg, react-native-screens, react-native-gesture-handler, a date/time picker library, an image picker library, a webview library. Use the same method: temporarily disable/remove one at a time, clean rebuild, fresh install (uninstall + reinstall to wipe all stored data), and confirm whether the crash persists. Fix the compatibility issue once found — typically a library version bump to one with confirmed New Architecture/Bridgeless support, or a patch to how the module is invoked. Verify a fully clean launch path: app must reach the splash screen, onboarding, and login screen reliably on a fresh install, every time, with no crash. How the app needs to function for this soft launch This is a soft launch, not the full feature set — the app needs to work cleanly within a deliberately narrowed scope. Once the crash is fixed, the build needs to behave exactly as follows before it's ready to submit: Onboarding and account creation. A new user goes through onboarding, then signs up with email and password only. No Google, Apple, or Facebook sign-in, and no phone/SMS login anywhere in the app — email is the only path in. After signup, the OTP email verification step has to actually work end to end: the code gets sent, the user enters it, and the account gets confirmed. No KYC gate. Users should be able to get into the main app and browse around without being forced through identity verification first. KYC stays in the backend for later, but it must not block access during this phase. Real location check. Geolocation needs to use actual Apple Core Location (device GPS with a proper permission prompt), not a workaround. This is what determines whether a user's state is eligible for real-money tournaments, and it needs to be a genuine native location check, not something hardcoded or guessed from the user's profile. Card deposits, no Apple Pay. Users fund their wallet with a debit or credit card through the PayPal card payment flow. Apple Pay should not appear as an option anywhere in this flow — card only. Tournament join has to work, fully. A user with money in their wallet needs to be able to open a tournament, pay the entry fee out of their balance, and get confirmed as entered — the whole payment-to-confirmed-entry path needs to be solid, not just the deposit step in isolation. VS / free play is off. The Invite tab and any 1-on-1 free-play matchmaking should not be live for this launch — show a "coming soon" placeholder instead of the real flow. Withdraw stays disabled. The withdraw button should be visibly present but greyed out / non-functional for now. Deposited funds are playable only and not withdrawable during this phase. Audio is off, and that's fine for now. Background music and sound effects are intentionally disabled for this launch and are not part of what's required to ship — don't spend time trying to bring them back unless explicitly asked. Everything else stays as is. Rankings, profile, avatar upload, live countdown timers on tournament cards, and the rest of the existing feature set should continue working exactly as they do now — the engineer's job is the crash fix and the items above, not a feature audit of the whole app. Admin dashboard. Tournament creation, editing, and cancellation from the admin dashboard need to be reliable, since tournaments will be set up and managed from there around the time of launch. Re-validate the full soft-launch feature set above after the crash fix — confirming each item works on a real build, not just in theory. Prepare and submit the TestFlight build for internal testing, then prepare the App Store Connect submission (screenshots, privacy details, review notes). A pre-configured Apple reviewer test account will be provided once hired. Requirements Strong hands-on experience with React Native's New Architecture (Fabric, TurboModules, Bridgeless mode) specifically — this is not a general React Native bug, it requires someone comfortable reading Objective-C++/Swift native module bridging code and Xcode crash reports (.ips files). Comfortable working directly with .ips crash logs, symbolicating stack traces, and reasoning about ObjC exception propagation across the JSI/TurboModule boundary. Experience shipping React Native apps through TestFlight and App Store review. Familiarity with CocoaPods, Xcode build configurations, and debugging native module linkage issues. Codebase context React Native 0.84.1, iOS min target 15.1, New Architecture enabled. Backend already live and stable (Node.js/PostgreSQL on AWS ECS) — this is an iOS-app-only fix. Full crash investigation notes (stack traces, what's been tested, environment details) will be provided to the selected candidate at project start so no time is wasted repeating already-completed diagnostic work. Communication and file sharing will happen entirely through the platform's built-in tools.