A simple Github spam account checker

May 6, 2025

I've released a lightweight GitHub profile scoring tool that helps determine whether an account is likely legit, suspicious, or spam. It runs as a Cloudflare Worker and uses simple heuristics like username patterns, repo count, and social activity to classify profiles.

The goal isn’t to be perfect, but to quickly surface obvious spam indicators for tools that need to vet GitHub identities (e.g. for contributor verification, waitlists, etc).

You can query it by passing a username param and get back a score, classification, and list of reasons behind the score. For example:

https://gitspam.dmdboi.me/?username=dmdboi

{
  "username": "sampleuser1234",
  "score": 47,
  "classification": "Suspicious",
  "reasons": [
    "Username contains long sequence of numbers",
    "Very few public repositories",
    "No followers and not following anyone"
  ]
}

It’s still early, so the next steps are testing it against known legit and spam accounts to check it's accuracy.

Github repo to follow soon!

Share this post: