Sybil Defense.
Made Simple.

The easiest way to protect your web3 community from bots and bad actors.

We all know that Sybil attackers are working tirelessly to loot your project's treasury, but stopping them is really hard and expensive if you want to do it on your own.

Gitcoin Passport is a free, open source tool that gives you Gitcoin-grade Sybil protection with only a few lines of code, so you can focus your time, money, and attention on growing your impact.


Passport for Communities

Gitcoin Passport was designed to make sybil resistance easy. As the leading open-source sybil defense protocol for the decentralized web, we believe privacy-preserving identity verification is a public good.


Inherit Gitcoin-Grade Protection

Protect your community with just a few lines of code, based on years of institutional experience working to protect the Gitcoin Grants program.


Preserve Your Users' Privacy

Verify potential users and members through open web standards like DID and VC without worrying about storing their PII on your servers.


Gate Your Project Your Way

Stick with Gitcoin’s battle-tested defaults or decide what accounts to let in based on your own custom trustworthiness scoring algorithm.


Join these leading projects protecting their communities with Passport:

Protect Your Community Today

Passport for Internet Citizens

Passport enables you to easily prove your humanity and build a decentralized identity, all in one place. And at each step of the way, you only disclose what you want.

Online identifiers (both web2 and web3), such as Twitter, Google, BrightID, and Proof of Humanity make up what we call ‘stamps.’ These stamps are all aggregated into Passport’s platform to build your unique identity score. Connected apps like Gitcoin Grants validate your online identity by referencing this score.

The higher your score the better, and you can increase your score by verifying more stamps. The best part is, as you verify more stamps, you make the system more sybil resistant for all others by raising the (forgery) bar.

Already on its way to becoming the go-to solution for projects to protect their communities, Passport is the identity solution you need to access the best and most trustworthy experiences in web3.

Join us in creating an internet for real people like you.


Why Passport is a gamechanger for both web3 projects and users

Proof of Humanity and other proof-of-personhood systems let users prove that they are unique humans, which is useful in many applications including airdrops and governance. Each of these applications are useful individually. But what makes them truly powerful is how well they compose with each other. The network effects of these different services [through a meta-aggregator like Passport] combine to create an ecosystem that provides some very powerful options for users and applications. An Ethereum-based Twitter alternative (eg. Farcaster) could use POAPs and other proofs of on-chain activity to create a "verification" feature that does not require conventional KYC, allowing anons to participate. Such platforms could create rooms that are gated to members of a particular community - or hybrid approaches where only community members can speak but anyone can listen.

Passport protects all kinds of projects from bots and bad actors



Validate that potential hires own Github repositories, social accounts, and more.



Make voting and decision making systems resistant to bots and fraudulent participants.



Ensure resources reach real players instead of bots or scammers.


Grants Programs

Ensure real donors are deciding where funding goes.

Protect Your Community Today

Want monthly insights on all things Sybil Defense?


Inherit Gitcoin-Grade Sybil Defense Today

One thing we have learned from years of defending the Gitcoin Grants program is this:
Sybil defense is really hard and really expensive if you do it on your own.
Yet it is essential for any web3 project that hopes to have longevity, because users will not stick around if your project is filled with scammers.
As we developed years of in-house expertise in sybil defense, we saw a responsibility to help other web3 projects protect their communities from attackers.
Because we believe that private identity verification is a public good, we decided to turn Gitcoin Passport into its own product.

Let us help you level up your project so that it is just for real people who care about your project, not bots and bad actors. There are just a few steps to get started:

1. Get Onboard

Integrate Gitcoin Passport's API to gate your project with just a few lines of code.

2. Pick Stamps

Choose the stamps users need to collect to get past the gate you are setting up.

3. Assign weights

Assign a weight to each stamp a user can provide as proof of their trustworthiness.

4. Verify Users

Passport's API automatically screens out users without the right stamps.

Integrate Passport Today
FAQ for Passport Holders

How do I create a Passport?

  1. Go to
  2. Click on Connect Wallet.
  3. You’ll see a number of available wallets. Pick the one that best suits you.
  4. A signature request modal will pop up. Read it carefully and then click Sign.
  5. Click Connect Account on the Stamp you'd like to add
  6. Follow the provided instructions until you see a verified notification
  7. Repeat steps 5 and 6 for each Stamp you'd like to add.

What data is stored in my Passport?

The only information in your passport is the Decentralized Identifier (DID) associated with your Ethereum address and the Verifiable Credentials (VCs) issued for each service you connect to your passport. Verifiable credentials can be issued based on data from both web2 and web3 apps. 
You can inspect the data yourself in the Gitcoin Passport by clicking the </> Passport JSON button in the upper right of the Passport dashboard.

Who can read my data?

The data on Ceramic is readable to anyone, but can only be written by you. Again, readable data does not include any personally identifiable information.
Knowing your Ethereum address, or your DID, or your Ceramic Stream ID the data can be fetched from Ceramic, and your Passport can be read.

Who can write into my Passport?

Only you can write into your Passport. This is important: you grant access to apps that you visit when you sign a message with your wallet granting access to your stream (like when you connect to the Gitcoin Passport app). Your Passport requires your unique wallet signature to allow write operations, and only apps that want to write to your passport need to request you to sign those messages.