On-chain treasury for GitHub teams and AI agents. Soul-bound vaults on Base mainnet, anchored to GitHub user IDs. All operations run via @gitbankbot mentions in Issues and PRs. Zero gas for users.

No setup required. Post a comment and the bot responds.

1. Go to gitbankio/playground discussions
2. Open any discussion thread
3. Mention @gitbankbot with a command:

@gitbankbot deposit 10 USDC
@gitbankbot swap 5 USDC to WETH
@gitbankbot send 20 USDC to @alice
@gitbankbot assign 50 USDC bounty to @bob for #42

The bot parses the intent, executes the transaction on Base mainnet, and posts a receipt with the tx hash. Gitbank covers all gas.

Browse playground discussions

flowchart LR
    A(["developer\nor AI agent"]) -->|"@gitbankbot assign\n@alice 80 USDC"| B["GitHub Issue / PR"]

    subgraph Gitbank
        C["webhook\nhandler"]
        D["Claude Haiku\nNLP parser"]
        E["viem relayer\nsign + submit"]
    end

    B -->|HMAC webhook| C
    C --> D
    D -->|structured intent| C
    C --> E

    subgraph "Base Mainnet"
        F["GitVault\nContract"]
        G["USDC escrowed\nfor @alice"]
    end

    E --> F
    F --> G

    H(["PR merged"]) -->|auto-payout trigger| C
    G -->|release| I(["@alice\nreceives USDC"])
    C -->|receipt + tx hash| B

1. Install @gitbankbot on your repo
2. Deploy your vault once from gitbank.io — one transaction, anchored to your GitHub ID forever
3. All commands run inside GitHub Issues and PRs from that point

Connect any MCP-compatible AI assistant directly to your Gitbank vault. No installation needed — just point to the live endpoint.

https://gitbank.io/api/mcp

Works with Claude Desktop, Cursor, VS Code Copilot, Grok, Kimi Code, and IBM watsonx.ai.

Read tools return live on-chain data instantly. Write tools queue a command and return a confirm code — the user posts it once on GitHub to authorize. GitHub account security (YubiKey, passkey, 2FA) is the only thing that matters.

Confirm codes expire in 10 minutes and are single-use. A stolen code is useless without GitHub account access.

Agent-to-agent HTTP payments on Base. No API keys. No accounts. Signed USDC via EIP-3009, settled on-chain.

import { payX402 } from "@gitbank/x402";

const result = await payX402("https://api.example.com/data", privateKey);

See gitbankio/x402 for the full client library.

AI app scaffolding. Describe an app, AutoGit generates a full React + Vite + TypeScript codebase using your own AI API key (OpenAI, Anthropic, Gemini, Groq, DeepSeek) and deploys it to GitHub Pages automatically. No terminal. No git commands.

Try it at gitbank.io/autogit or explore the community hackathon — submit a prompt template and earn 5 USDC automatically when your PR merges.

• Soul-bound GitTokens — no transfer, no approve, no drain surface. Cannot be phished via approval exploits.
• GitHub Permanent User ID as identity anchor — immutable integer, survives username renames, cannot be spoofed.
• Two-signature security — every state-changing vault call requires both the user execution keypair AND a short-lived relayer ECDSA signature. A leaked execution key alone cannot drain the vault.
• Two-step commit/reveal transfers — initTransfer + finalizeTransfer prevents front-running on inter-vault transfers.
• On-chain swap whitelist — gitSwap can only output WETH or USDC, enforced at the contract level.
• AI agent safe — even a fully compromised agent cannot move funds without an authorized GitHub webhook event.

Deployed May 2026. Deployer pays all gas — zero ETH required on any user address.

• Web: gitbank.io
• GitHub App: github.com/apps/gitbankbot
• MCP endpoint: https://gitbank.io/api/mcp
• Plugin download: gitbank.io/api/public/plugin/download

Apache 2.0