Automatically scores pull request code quality using AI and stores the results on-chain via the O2 Oracle. Part of the GASS system for meritocratic, Sybil-resistant token distribution — but works standalone in any repo that wants on-chain developer metrics.

Sign up at sandbox.dashboard.api.o2-oracle.io and create an app with a property list. The property list schema should include:

You'll need four values from your O2 Oracle account.

O2_APP_ID — The ID of your app. Note: this is not your organization ID. To find it:

npm install node-fetch
node -e "
const fetch = require('node-fetch');
(async () => {
  const r = await fetch('https://sandbox.api.o2-oracle.io/login', {
    method: 'POST',
    headers: {'Content-Type': 'application/json'},
    body: JSON.stringify({email: 'YOUR_EMAIL', password: 'YOUR_PASSWORD'})
  });
  const {token} = await r.json();
  const apps = await fetch('https://sandbox.api.o2-oracle.io/apps', {
    headers: {Authorization: 'Bearer ' + token}
  });
  console.log(JSON.stringify(await apps.json(), null, 2));
})();
"

Each app in the response has an id — that's your O2_APP_ID.

O2_PROP_LIST_ID — The ID of the property list within your app. Run the included helper after cloning this repo:

O2_EMAIL=your@email.com O2_PASSWORD=yourpassword O2_APP_ID=your-app-id \
  node .github/scripts/get_property_lists.js

Find your list in the output — its id field is your O2_PROP_LIST_ID.

Go to Settings → Secrets and variables → Actions and add:

Create .github/workflows/gass.yml in your repository:

name: GASS Analysis
on:
  pull_request:
    types: [opened, synchronize, reopened]

jobs:
  analyze:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - name: GASS Code Quality Score
        uses: michael-bey/gass@v1
        with:
          o2_email: ${{ secrets.O2_EMAIL }}
          o2_password: ${{ secrets.O2_PASSWORD }}
          o2_app_id: ${{ secrets.O2_APP_ID }}
          o2_prop_list_id: ${{ secrets.O2_PROP_LIST_ID }}
          openrouter_api_key: ${{ secrets.OPENROUTER_API_KEY }}

That's it. On every PR, the action will fetch the diff, send it to OpenRouter for AI code review, calculate a 0–100 quality score, and update the contributor's record in the O2 Oracle.

To have GASS post the score and full AI review as a comment directly on the PR, add permissions and pass github_token:

jobs:
  analyze:
    runs-on: ubuntu-latest
    permissions:
      contents: read              # required for actions/checkout
      pull-requests: write        # required to post comments
    steps:
      - uses: actions/checkout@v4

      - name: GASS Code Quality Score
        uses: michael-bey/gass@v1
        with:
          o2_email: ${{ secrets.O2_EMAIL }}
          o2_password: ${{ secrets.O2_PASSWORD }}
          o2_app_id: ${{ secrets.O2_APP_ID }}
          o2_prop_list_id: ${{ secrets.O2_PROP_LIST_ID }}
          openrouter_api_key: ${{ secrets.OPENROUTER_API_KEY }}
          github_token: ${{ secrets.GITHUB_TOKEN }}   # no new secret needed

secrets.GITHUB_TOKEN is automatically provided by GitHub Actions — no configuration required. When enabled, each PR will receive a comment from github-actions[bot] with:

• This PR score — the raw score for this diff (0–100)
• Updated average — the contributor's new weighted lifetime average
• Total reviews — how many PRs have been scored for this contributor
• Full AI review — the complete reasoning behind the score

• Token airdrops based on community contributions
• Retroactive funding for open source developers
• DAO governance token distribution
• Community rewards programs
• Contributor reputation systems

Learn more: System Architecture & Token Distribution →