# mitchellh/vouch **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/mitchellh-vouch).** 3,343 stars · 48 forks · Nushell · mit ## Links - GitHub: https://github.com/mitchellh/vouch - awesome-repositories: https://awesome-repositories.com/repository/mitchellh-vouch.md ## Description Vouch is a GitHub Actions automation that enforces community trust by requiring new contributors to be vouched by existing members before they can interact with a project's issues and pull requests. It maintains a vouched user list in a tracked file, and automatically closes or locks interactions from unvouched or denounced users to reduce spam and abuse. The system lets collaborators manage trust through issue and discussion comments using specific keywords to vouch, denounce, or unvouch users, with automatic updates to the vouched list and optional pull request merges. It also provides a CLI tool for checking and managing vouch status directly within CI workflows, and can sync CODEOWNERS into the vouch list so maintainers are automatically trusted. Vouch supports cross-repository configuration lookup, delegates vouching authority to project admins and collaborators with write access, and creates a private GitHub App identity to bypass branch protection for automated commits and pull request merges. The project includes a Nix shell development environment for local testing and development. ## Tags ### Development Tools & Productivity - [Contribution Vetting Systems](https://awesome-repositories.com/f/development-tools-productivity/contribution-vetting-systems.md) — Requires new contributors to be vouched by existing members before they can interact with issues and pull requests. ([source](https://github.com/mitchellh/vouch#readme)) - [Unvouched User Interaction Closers](https://awesome-repositories.com/f/development-tools-productivity/auto-closing-brackets/unvouched-user-interaction-closers.md) — Automatically closes and locks issues or pull requests opened by unvouched or denounced users. ([source](https://github.com/mitchellh/vouch#readme)) - [Automated Trust Management Systems](https://awesome-repositories.com/f/development-tools-productivity/automated-trust-management-systems.md) — Uses issue and discussion comments to vouch, denounce, or unvouch users with automatic file updates and PR merges. - [Issue and Discussion Comment Triggers](https://awesome-repositories.com/f/development-tools-productivity/comment-based-workflow-triggers/issue-and-discussion-comment-triggers.md) — Uses issue and discussion comments with specific keywords to trigger vouch, denounce, and unvouch actions. - [Trust Management Commands](https://awesome-repositories.com/f/development-tools-productivity/comment-formatting-utilities/structured-comment-management/issue-commenting/trust-management-commands.md) — Lets collaborators vouch for or denounce users by posting specific keywords in issue or discussion comments. ([source](https://github.com/mitchellh/vouch/blob/main/README.md)) - [Vouch Management Commands](https://awesome-repositories.com/f/development-tools-productivity/comment-formatting-utilities/structured-comment-management/issue-commenting/vouch-management-commands.md) — Ships a system for collaborators to vouch, denounce, or unvouch users by posting keyword commands in issue comments. ([source](https://github.com/mitchellh/vouch#readme)) - [Vouch-Based Access Controls](https://awesome-repositories.com/f/development-tools-productivity/community-contribution-guides/vouch-based-access-controls.md) — Requires existing members to vouch for new contributors before they can interact with project resources. - [GitHub Workflow Integrations](https://awesome-repositories.com/f/development-tools-productivity/github-workflow-integrations.md) — Runs vouch commands and checks user status directly within GitHub Actions workflows for automated moderation. - [Issue Moderation Utilities](https://awesome-repositories.com/f/development-tools-productivity/issue-moderation-utilities.md) — Automatically closes and locks issues from unvouched or denounced users to reduce spam and abuse. - [Vouched User Registries](https://awesome-repositories.com/f/development-tools-productivity/project-management-boards/list-management/vouched-user-registries.md) — Maintains a vouched user list via issue comments, CLI commands, and automated syncs with CODEOWNERS. - [CLI Vouch List Management](https://awesome-repositories.com/f/development-tools-productivity/project-management-boards/list-management/vouched-user-registries/cli-vouch-list-management.md) — Adds, removes, or denounces users in the vouch list using local command-line commands. ([source](https://github.com/mitchellh/vouch/blob/main/README.md)) - [Cross-Repository Manager Lookups](https://awesome-repositories.com/f/development-tools-productivity/repository-configuration/cross-repository-manager-lookups.md) — Reads a separate repository's configuration to determine which users are authorized to manage vouching. ([source](https://github.com/mitchellh/vouch/blob/main/COOKBOOK.md)) ### Software Engineering & Architecture - [GitHub Actions](https://awesome-repositories.com/f/software-engineering-architecture/integration-extensibility/workflow-automation-integrations/ci-cd-integrations/github-actions.md) — Enforces community trust by requiring vouching for new contributors and auto-closing blocked interactions. - [Author Trust Gates](https://awesome-repositories.com/f/software-engineering-architecture/development-methodologies/engineering-best-practices/open-source-collaboration/open-source-methodologies/contribution-workflows/pull-request-and-issue-pipelines/author-trust-gates.md) — Blocks unvouched users from opening issues or pull requests, with automatic closure and locking. ### Business & Productivity Software - [Author Trust Issue Blockers](https://awesome-repositories.com/f/business-productivity-software/issue-tracking/author-trust-issue-blockers.md) — Automatically closes and locks issues from unvouched or denounced users to reduce spam and abuse. ([source](https://github.com/mitchellh/vouch/blob/main/README.md)) - [User Denouncements](https://awesome-repositories.com/f/business-productivity-software/a-b-testing/user-denouncements.md) — Records a negative endorsement for a user by commenting a keyword on an issue, which updates a tracked file. ([source](https://github.com/mitchellh/vouch#readme)) ### Security & Cryptography - [Vouch-Based Access Controls](https://awesome-repositories.com/f/security-cryptography/domain-access-restrictions/request-access-restrictions/resource-access-restrictions/vouch-based-access-controls.md) — Requires new users to be vouched by existing members before they can interact with project resources. ([source](https://github.com/mitchellh/vouch/blob/main/FAQ.md)) - [User Block Lists](https://awesome-repositories.com/f/security-cryptography/user-block-lists.md) — Prevents any user listed as denounced from having their pull requests accepted or merged. ([source](https://github.com/mitchellh/vouch/blob/main/action/check-pr/README.md)) - [Vouch & Denounce Management](https://awesome-repositories.com/f/security-cryptography/vouch-denounce-management.md) — Clears a previous endorsement for a user by commenting a keyword on an issue, which updates a tracked file. ([source](https://github.com/mitchellh/vouch/blob/main/action/manage-by-issue/README.md)) - [Trust Revocation Systems](https://awesome-repositories.com/f/security-cryptography/anti-abuse-systems/trust-revocation-systems.md) — Allows authorized members to revoke a user's vouched status when they violate community norms. ([source](https://github.com/mitchellh/vouch/blob/main/FAQ.md)) - [Vouch Authority Delegations](https://awesome-repositories.com/f/security-cryptography/route-protection/server-side-authorization/delegated-server-authorization/administrative-access-delegation/vouch-authority-delegations.md) — Restricts the ability to vouch or denounce users to project admins and collaborators with write access. ([source](https://github.com/mitchellh/vouch/blob/main/FAQ.md)) ### System Administration & Monitoring - [Vouch Status Queries](https://awesome-repositories.com/f/system-administration-monitoring/account-status-checks/vouch-status-queries.md) — Executes vouch commands like checking a user's status directly within a CI workflow step. ([source](https://github.com/mitchellh/vouch/blob/main/action/setup-vouch/README.md)) - [GitHub Repository Moderation](https://awesome-repositories.com/f/system-administration-monitoring/moderation-tools/community-moderation-systems/github-repository-moderation.md) — Restricts repository access to vouched users, automatically closing interactions from unvouched or denounced contributors. ### Testing & Quality Assurance - [Author Trust Checks](https://awesome-repositories.com/f/testing-quality-assurance/ci-integration-testing/quality-gates/pull-request/author-trust-checks.md) — Checks whether a pull request author is vouched, denounced, or automatically allowed, and optionally closes the PR. ([source](https://github.com/mitchellh/vouch/blob/main/action/check-pr/README.md)) - [Author Trust PR Blockers](https://awesome-repositories.com/f/testing-quality-assurance/ci-integration-testing/quality-gates/pull-request/author-trust-pr-blockers.md) — Automatically closes pull requests from unvouched or denounced users to maintain community standards. ([source](https://github.com/mitchellh/vouch/blob/main/README.md)) - [Author Vouch Checks](https://awesome-repositories.com/f/testing-quality-assurance/ci-integration-testing/quality-gates/pull-request/author-vouch-checks.md) — Blocks or closes pull requests from unvouched or denounced authors to maintain code quality and community standards. ### Part of an Awesome List - [Author Vouch-Based Auto-Closures](https://awesome-repositories.com/f/awesome-lists/devtools/pull-request-automation/author-vouch-based-auto-closures.md) — Closes pull requests automatically when the author is unvouched or denounced, saving manual triage effort. ([source](https://github.com/mitchellh/vouch/blob/main/action/check-pr/README.md)) - [Vouch List Pull Requests](https://awesome-repositories.com/f/awesome-lists/devtools/pull-request-automation/vouch-list-pull-requests.md) — Creates a branch and pull request with VOUCHED file updates instead of committing directly to the default branch. ([source](https://github.com/mitchellh/vouch/blob/main/action/manage-by-issue/README.md)) - [Shell Scripts](https://awesome-repositories.com/f/awesome-lists/devtools/shell-scripts.md) — Manages community trust and participation. ### DevOps & Infrastructure - [Automated Bypass Identities](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/version-control-systems/branch-merging-strategies/branch-protections/automated-bypass-identities.md) — Creates a private GitHub App identity to bypass branch protection for automated commits and pull request merges. ([source](https://github.com/mitchellh/vouch/blob/main/COOKBOOK.md)) ### Web Development - [Code Owner Trust Syncs](https://awesome-repositories.com/f/web-development/list-management-apis/user-list-membership/code-owner-trust-syncs.md) — Automatically adds users listed in CODEOWNERS to the vouch list so maintainers are trusted by default. ([source](https://github.com/mitchellh/vouch#readme))