tangled.org / core
Monorepo for Tangled tangled.org
832
fork

Configure Feed

Select the types of activity you want to include in your feed.

blog: vouching on tangled

Signed-off-by: oppiliappan <me@oppi.li>

oppiliappan d387f9e9 bbaf9ab1

+84
+84
blog/posts/vouching.md
··· 1 + --- 2 + atroot: true 3 + template: 4 + slug: vouching 5 + title: combat LLM spam by building a web-of-trust 6 + subtitle: vouching on tangled 7 + date: 2026-04-29 8 + authors: 9 + - name: Akshay 10 + email: akshay@tangled.org 11 + handle: oppi.li 12 + draft: true 13 + --- 14 + 15 + Tangled now has native support for 16 + [vouching](https://github.com/mitchellh/vouch/)! You can 17 + vouch or denounce users that you interact with. Vouched 18 + users will have a green shield icon beside their profile 19 + pictures, and denounced users will have a red one. You can 20 + use this to inform decisions about an interaction. You can 21 + also see the vouch/denounce decisions made by your circle. 22 + 23 + ## why vouch? 24 + 25 + Vouching serves as a signal of trust to your circle. 26 + 27 + The bar to submit code to a project has never been lower 28 + thanks to LLM based tooling. LLM tools are really good at 29 + creating "uncanny valley" submissions. Code that looks 30 + correct but is subtly wrong. The onus is on maintainers to 31 + now take the time to review such submissions. To ease this 32 + burden, maintainers from across the Tangled network can now 33 + vouch for or denounce contributors that misuse these tools 34 + and create a maintenance burden. 35 + 36 + ## mindful design 37 + 38 + Such systems need careful consideration. Vouching on Tangled 39 + includes the following to begin with: 40 + 41 + - vouching/denouncing with a text-based reason field 42 + - attenuation: you can only view decisions made by you and 43 + your circle 44 + - no consequences to being denounced: at present, denounced 45 + users aren't blocked from the project, but simply have a 46 + red warning label in parts of the UI 47 + 48 + Some additions that I want to put in down the line: 49 + 50 + - decay of vouches: maintainers and contributors tend to 51 + move on from projects over time, so vouches should decay 52 + as time passes, and be renewed every now and then 53 + - evidence trails: vouching for a user right after merging a 54 + PR should add the PR to the vouch record as a piece of 55 + evidence 56 + 57 + ## how it works 58 + 59 + When you vouch for or denounce somebody on Tangled, you 60 + create a **public** record on your 61 + [PDS](https://atproto.com/guides/glossary#pds-personal-data-server). 62 + The record includes: 63 + 64 + - whether you vouched for or denounced somebody 65 + - an optional reason for doing so 66 + 67 + The Tangled appview then aggregates vouch data from across 68 + the network, and displays vouch "hats" over profiles at 69 + points of interaction: 70 + 71 + - in issues and issue comments 72 + - in pull-requests and pull-request comments 73 + 74 + A hat appears over a user only if you have directly 75 + vouched/denounced them, or if somebody you have vouched for, 76 + has vouched/denounced them. 77 + 78 + Additionally, there are no consequences for a denounced 79 + user. Only a hat. You can click on the hat to see who 80 + vouched/denounced this user in your circle. The consequences 81 + may change eventually, but for now you can use the hat to 82 + inform a decision. 83 + 84 + Start building your web of trust on Tangled today.