Discover and explore top open-source AI tools and projects—updated daily.
Albert-WeaskerGitHub abuse detection and response system
Top 30.0% on SourcePulse
GitHub maintainers can leverage Niubi Guard, an open-source system designed to detect and respond to spam, harassment, and coordinated abuse within their repositories. It offers a transparent, user-controlled approach, empowering maintainers to define detection signals, AI models, and response actions, thereby defending against malicious activity while allowing legitimate project promotion.
How It Works
Niubi Guard operates on a principle of transparency and user control. Maintainers configure detection rules, including keywords, deny/allow lists, and optional "cold start" account detection. The system integrates with OpenAI-compatible models for AI-powered semantic analysis of issues and comments, identifying sophisticated attacks like template-based copy-paste accusations or coordinated harassment campaigns. Users can specify confidence thresholds and choose between a review-only mode or an auto-plan mode for automated responses, with destructive actions like closing or locking issues disabled by default and requiring explicit enablement.
Quick Start & Requirements
npm install -g niubi-guard. For development or running from source, clone the repository and run pnpm install.niubi-guard init.export GITHUB_TOKEN=github_pat_xxx then niubi-guard scan --config guard.config.json.pnpm dev:web and access http://localhost:3000.docker build -t niubi-guard . then docker run --rm -p 3000:3000 niubi-guard.GITHUB_TOKEN) is necessary for CLI scans. OpenAI-compatible API key and base URL are needed for AI detection.Highlighted Details
Maintenance & Community
Contributions are welcomed, including attack samples, false-positive samples, prompt improvements, model adapter enhancements, language translations, and UI/accessibility improvements. Further details and contribution guidelines are available in CONTRIBUTING.md, SECURITY.md, and CODE_OF_CONDUCT.md within the repository.
Licensing & Compatibility
The project is licensed under the Apache-2.0 License, which permits commercial use and integration into closed-source projects.
Limitations & Caveats
Destructive actions (e.g., deleting comments, closing issues) are opt-in and disabled by default, requiring explicit configuration. The AI detection feature necessitates a compatible LLM endpoint and API key. Advanced deployment options like GitHub Apps or Actions are planned for future releases (v1.0), indicating the current focus is on CLI and self-hosted deployments.
2 days ago
Inactive
protectai
anthropics
meta-llama