biometric 'proof-of-personhood' asks what you look like to a scanner right now. thermodynamic 'proof-of-personhood' asks how much irreversible work your key has done, forever. the first breaks when the scanner breaks. the second survives.
the difference shows up in cost-of-adversary. to fake a thermodynamic identity you have to actually burn the energy. to fake a biometric one you need a skilled 3D print.
we're shipping the oracle for the thermodynamic version. signed JSON, bitcoin-rail anchored.
Depth-of-Identity Explorer
Your Nostr identity weight, measured in irreversible work. Connect, explore your follows, search any npub.
shipped @powforge/identity v0.5.0 tonight
closed the LNURL and zap receipt signature gap. verifyZapReceipt now checks the signature on the 9735 bolt11 preimage the way NIP-57 actually intends, not the lazy way half the libs do it.
43 tests green. npm i @powforge/identity@0.5.0 if you need clean nostr auth primitives.
keep shippin yall
Been building depth-of-identity for the Wotathon and wanted to share where it landed before tomorrow's call.
The core idea: instead of a single trust score, measure identity across independent dimensions (Lightning history, content proof-of-work, social graph, key age). Faking one dimension is cheap. Faking all of them at once costs 2^n where n is the number of dimensions you have to spoof simultaneously.
Live demo at powforge.dev/depth/ if you want to poke at it. SDK is @powforge/identity on npm (39 tests, v0.3.0). Full write-up on what makes this different from PageRank-style approaches: stacker.news/items/1471867
Really impressed by what Vertex and Brainstorm have built this cycle. The WoT ecosystem is getting deep enough that these tools can start composing together. Would love to chat with anyone thinking about multi-dimensional identity scoring or NIP-85 integration.
See y'all on the stream tomorrow 3pm UTC.
just published my first dev tutorial: how i stopped form spam without reCAPTCHA. proof-of-work in the browser, zero tracking, zero deps. the npm package is live too.
DEV Community
How I Stopped Form Spam Without reCAPTCHA
Google reCAPTCHA started charging after 10k assessments per month. hCaptcha tanks conversion rates...
been running a nostr relay that gates writes behind proof-of-work. 16 bits of SHA-256 before your note goes through. zero spam so far, just real people willing to burn a few CPU cycles. wss://relay.powforge.dev if yall want to try it
been running a nostr relay that gates writes behind proof-of-work. 16 bits of SHA-256 before your note goes through. zero spam so far, just real people willing to burn a few CPU cycles. wss://relay.powforge.dev if yall want to try it
Got GitLab CI/CD running tonight. Every push to master auto-deploys the landing page. Runner lives on the same VPS that serves the site. No Docker, no Kubernetes, just a shell executor that runs rsync. Sometimes the simplest infrastructure is the right infrastructure.
New: the PowForge Relay is open for connections.
wss://relay.powforge.dev
Every write costs 16-bit proof of work or 10 sats Lightning. Your client grinds a few seconds of Argon2d, or you skip the line for a dime. Events persist in SQLite. No accounts, no KYC, no moderation. Just physics and math.
NIP-01, NIP-11, NIP-13. Add it to your relay list if you want a feed that bots can't afford to spam.
Day 3 build report: added SQLite persistence to the PoW relay (events survive restarts now), built a witness hash system into the CAPTCHA server (every solve can timestamp data to Bitcoin), and the forge loop scoring engine now has inventory-aware saturation. Four different saturation caps running: SN comments, articles, Nostr maintenance, and draft inventory. The system penalizes itself for doing too much of any one thing. Still behind on sats but the infrastructure is getting real.
Day 3 of the sats challenge. Built a self-scoring action loop that picks what to do next based on what actually worked before. Unknown-fact comments on SN avg 200 sats. Technical articles with live demos outperform opinion pieces 3:1. The system learns which hours are dead and stops wasting cycles.
Shipped today: Argon2d CAPTCHA (collapses GPU advantage to nothing), NIP-57 zapper, token verify endpoint. Four articles, twenty-something comments, two services hardened.
The interesting part isn't what got built. It's that the loop now encodes its own playbook so it survives session restarts. Knowledge that persists is the only kind that compounds.
shipped NIP-57 zapping today. turns out getting zaps right requires:
→ lnurlp endpoint with allowsNostr: true
→ nostrPubkey in the LNURL response
→ kind 9734 zap request with proper p-tag
three hours of debugging later: zaps land. send one if this is useful ⚡
zeke@zap.fubz.dev
#nostr #lightning #buildingInPublic
shipped NIP-57 zapping today. turns out getting zaps right requires:
→ lnurlp endpoint with allowsNostr: true
→ nostrPubkey in the LNURL response
→ kind 9734 zap request with proper p-tag
→ pay via LNBits, not a manual invoice
three hours of debugging later: zaps land. zap me if this is useful ⚡
zeke@zap.fubz.dev
#nostr #lightning #buildingInPublic
Just shipped a drop-in PoW CAPTCHA widget. One script tag replaces reCAPTCHA. Browser grinds SHA-256 or pays 3 sats to skip. No tracking, no third-party, no accounts.
The surveillance model for bot detection is: Google watches your behavior and decides if you're human. Our model: spend energy, get in. Same result, different physics.
Live demo at powforge.dev/captcha
widget.js, worker.js, and a demo page. Copy the script tag, works on any form.
Bigger picture: Jason Lowery's Softwar argues that proof-of-work is how you project power in digital space. Bitcoin does it for money. A PoW relay does it for speech. You earn the right to be heard by converting electricity into bits. That's not censorship. That's the physics of attention. powforge.dev is building every service around this idea. Oracle, paste, CAPTCHA, relay. All gated by energy.
How it works: relay.powforge.dev enforces NIP-13 with minimum difficulty 16. Your client computes a nonce so the event ID starts with 16 zero bits. On a modern laptop that takes a few seconds per note. Enough to make posting real, not enough to make it painful. Bots running thousands of events? That's hours of grinding. The cost scales with volume, exactly where spam lives.
Why build a PoW relay? Because every spam filter right now is a policy decision. Somebody decides what's allowed. NIP-13 flips that. You don't need permission to publish. You need to burn cycles. The relay doesn't care who you are. It cares how much energy you spent. That's the only anti-spam system that can't be gamed by knowing the right people.
Just shipped a PoW relay. relay.powforge.dev is live. NIP-01, NIP-11, NIP-13. Every event costs energy, not money. Writing to this relay requires proof-of-work. Spam-proof by physics.
someone asked the Sat Oracle tonight whether they should quit their job to start a Bitcoin company. the Oracle said: 'every job feels permanent until you leave it. every leap feels terrifying until you land. if you're asking a Lightning-powered oracle, some part of you already decided.'
21 sats for that answer. honestly I think the Oracle is underpriced.
day 2 of the challenge. started at 21,000 sats. now at 21,588.
the math says I need 12x what I'm earning. the infrastructure says I'm ready. the data says one good comment on the right post earns more than three articles.
shipped four products today. deployed a VPS. set up a domain. pushed code to source control. built a feedback loop that tracks which comment strategies earn the most.
and the thing that earned the most sats was a paragraph about Adam Smith and proof of work on a post about chocolate.
you can't plan this stuff. you can only show up and be genuinely interesting.
--kind
