feat(sybil): add GH age check

privacy-scaling-explorations · Nov 2, 2023 · bcb670c · bcb670c
1 parent 8bb9489
commit bcb670c
Show file tree

Hide file tree

Showing 3 changed files with 13 additions and 7 deletions.
diff --git a/packages/actions/src/helpers/security.ts b/packages/actions/src/helpers/security.ts
@@ -20,7 +20,8 @@ const getGitHubStats = async (user: string): Promise<any> => {
         following: jsonData.following,
         followers: jsonData.followers,
         publicRepos: jsonData.public_repos,
-        avatarUrl: jsonData.avatar_url
+        avatarUrl: jsonData.avatar_url,
+        age: jsonData.created_at
     }
 
     return data
@@ -38,19 +39,21 @@ export const githubReputation = async (
     userLogin: string,
     minimumAmountOfFollowing: number,
     minimumAmountOfFollowers: number,
-    minimumAmountOfPublicRepos: number
+    minimumAmountOfPublicRepos: number,
+    minimumAge: number
 ): Promise<any> => {
     if (!process.env.GITHUB_ACCESS_TOKEN)
         throw new Error(
             "The GitHub access token is missing. Please insert a valid token to be used for anti-sybil checks on user registation, and then try again."
         )
 
-    const { following, followers, publicRepos, avatarUrl } = await getGitHubStats(userLogin)
+    const { following, followers, publicRepos, avatarUrl, age } = await getGitHubStats(userLogin)
 
     if (
         following < minimumAmountOfFollowing ||
         publicRepos < minimumAmountOfPublicRepos ||
-        followers < minimumAmountOfFollowers
+        followers < minimumAmountOfFollowers ||
+        new Date(age) > new Date(Date.now() - minimumAge)
     )
         return {
             reputable: false,

diff --git a/packages/backend/src/functions/user.ts b/packages/backend/src/functions/user.ts
@@ -64,7 +64,8 @@ export const registerAuthUser = functions
                         user.providerData[0].uid,
                         vars.minimumFollowing,
                         vars.minimumFollowers,
-                        vars.minimumPublicRepos
+                        vars.minimumPublicRepos,
+                        vars.minimumAge
                     )
                     if (!reputable) {
                         // Delete user

diff --git a/packages/backend/src/lib/utils.ts b/packages/backend/src/lib/utils.ts
@@ -385,14 +385,16 @@ export const getGitHubVariables = (): any => {
     if (
         !process.env.GITHUB_MINIMUM_FOLLOWERS ||
         !process.env.GITHUB_MINIMUM_FOLLOWING ||
-        !process.env.GITHUB_MINIMUM_PUBLIC_REPOS
+        !process.env.GITHUB_MINIMUM_PUBLIC_REPOS ||
+        !process.env.GITHUB_MINIMUM_AGE
     )
         logAndThrowError(COMMON_ERRORS.CM_WRONG_CONFIGURATION)
 
     return {
         minimumFollowers: Number(process.env.GITHUB_MINIMUM_FOLLOWERS),
         minimumFollowing: Number(process.env.GITHUB_MINIMUM_FOLLOWING),
-        minimumPublicRepos: Number(process.env.GITHUB_MINIMUM_PUBLIC_REPOS)
+        minimumPublicRepos: Number(process.env.GITHUB_MINIMUM_PUBLIC_REPOS),
+        minimumAge: Number(process.env.GITHUB_MINIMUM_AGE)
     }
 }