duriantaco

duriantaco / vouch

Public

Vouch compiles human-owned intent into obligations, links evidence artifacts to those obligations, and produces deterministic release decisions for agent-written changes.

duriantaco.github.iovouch agentic-ai ai-agents automation ci code-quality
10
2
89% credibility
Found May 12, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Go
AI Summary

Vouch generates and enforces release contracts for code repositories to ensure AI-authored changes meet behavior, security, testing, monitoring, and rollback obligations before deployment.

How It Works

1
๐Ÿ” Discover Vouch

You hear about Vouch, a helpful tool that adds safety checks for code changes, especially from AI assistants.

2
๐Ÿ“ Point to your project

Simply tell Vouch about your code folder, and it scans everything to understand your setup.

3
โœจ Get instant safety contracts

Vouch automatically creates clear safety rules tailored to your project, spotting risks and tests.

4
โœ… Review and adjust rules

Take a quick look at the suggested rules, tweak what fits your needs, and save them.

5
๐Ÿงช Run your usual checks

Kick off your normal tests and monitoring, and Vouch links the results to the safety rules.

6
Check the release gate
โœ…
All clear!

Everything passesโ€”deploy with confidence.

โš ๏ธ
Needs fixes

See exactly what's missing and make quick adjustments.

๐ŸŽ‰ Safe and smooth releases

Your project ships reliably, with AI changes double-checked beyond basic tests.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is vouch?

Vouch compiles human-written YAML intents โ€“ like release contracts for auth flows or billing logic โ€“ into stable obligations, links them to evidence artifacts such as JUnit tests, metrics, and runtime signals from agent-written changes, and spits out deterministic release decisions: block, human escalation, canary, or auto-merge. Built in Go, it runs via CLI commands like `vouch try` for previews, `vouch compile` for obligation IR, `vouch evidence import junit`, and `vouch gate` for final calls. It fixes the "CI passed but risky AI code slips through" problem by enforcing human-owned specs over fuzzy gates.

Why is it gaining traction?

Unlike fake vouch github bots, discord vouch bots, or simple github vouch proxies, vouch delivers deterministic decisions from compiled vouchers at work, with bootstrap scanning repo signals like CODEOWNERS and tests to draft intents automatically. Devs dig the `vouch try --write` workflow that scaffolds .vouch/ dirs without manual YAML grind, plus GitHub Actions integration for agent-written changes. Its focus on artifacts and obligations beats vague coverage reports.

Who should use this?

Security and platform teams gating agent-written auth or payment changes, where "voucher bedeutung" means enforceable rollback plans and metrics. CI/CD engineers at voucherwonderland-scale orgs tired of ad-hoc approvals for high-risk PRs. Not for trivial repos โ€“ skip if you're not deploying AI-generated code.

Verdict

Try in shadow mode for agent-written pilots; beta status with 10 stars means solid docs and deterministic benches, but production needs more pilots. Credibility score: 0.8999999761581421%. Practical now, scales with adoption.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.