Vouch is a trust management system designed to enhance interactions within open-source projects. It requires users to be vouched for before accessing certain project areas, while also allowing for explicit denouncement to block problematic users. The system is flexible, accommodating various projects and code forges, with GitHub integration available through actions and a command-line interface (CLI). The vouch list, which keeps track of vouched and denounced users, is stored in a simple flat file format that can be easily parsed. One notable feature is the ability to create a web of trust among projects. By configuring Vouch to read other projects’ lists, trustworthy users in one project can be recognized as trustworthy in others. This approach aims to combat the influx of low-quality contributions that have become more common due to the rise of AI tools that produce plausible but poorly understood changes. Vouch allows projects to define their own trust policies, deciding who can vouch or denounce and what consequences those actions carry. Integrating Vouch into a GitHub project is straightforward, utilizing GitHub Actions for various checks related to issues and pull requests. Users can easily check their vouch status, add or denounce others, and manage contributor statuses through comments. The CLI, built on Nushell, offers commands for checking user status, adding users to the vouch list, and denouncing them, with the results clearly defined through exit codes. The system is still experimental, currently in use by Ghostty, and aims to evolve based on user feedback.