Why It Can't Be Gamed

GASCOIN is designed so that the cost of fabricating a valid submission always exceeds the value of the refund. Here's why:

• Physical receipt required — You need a real paper receipt from a real gas station. Digital, email, and app receipts are rejected. AI-generated receipt images are caught by Grok's image analysis
• Handwritten wallet ID — The last 4 characters of your wallet must be physically written on the receipt in pen. This ties the receipt to a specific wallet at a specific moment in time
• Live tweet verification — Your tweet must exist, be public, contain #gascoin, and be posted within 48 hours. Deleting the tweet after submission fails re-verification at payout time
• AI image analysis — Grok scores every receipt for AI generation probability and digital tampering. Two independent scores must both pass
• Perceptual hashing — Every receipt is fingerprinted and compared against all previous submissions. The same receipt cannot be submitted twice, even if edited
• Social graph scoring — Your X account must have 100+ real followers, posting history, and pass account quality checks. Bot accounts and purchased followers are detected
• Referral ring detection — AI graph analysis identifies and blocks circular referral schemes
• Tier-based cooldowns — Submission frequency is capped by tier. Even Fleet (the highest tier) is limited to 4 per week
• Dual token check — Token balance is verified at submission AND before payout. Dumping tokens after submission blocks the refund
• Pre-payout re-verification — Before every SOL dispatch, the system re-checks: tweet still live, follower count still valid, account quality still passing, token balance still held
• Admin review layer — Every submission is reviewed by a human admin before funds are released. The admin has full visibility into all gate results, AI scores, and fraud signals
• Immutable audit log — Every action on the platform is permanently recorded. Nothing can be done silently
• Claude oversight with memory — Every claim is reviewed by AI manager before SOL moves. Claude receives all 12 gate results, fraud scores, cross-validation signals, plus the wallet's full behavioral history from mem0 and relevant institutional rules from the knowledge base. A wallet with a declining trust trajectory and cross-pipeline flags gets extra scrutiny
• Cross-pipeline memory — Every pipeline writes signals to persistent memory. A referral ring detected at 10am blocks the pending payout at 10:05am. Engagement spam flagged on Monday informs Claude's review on Tuesday. Nothing is forgotten
• Payout cross-pipeline guard — Before SOL is dispatched, the payout worker checks for flags from other pipelines. A wallet flagged for ring activity, auto-banned, or showing declining trust is blocked even if the claim was already approved
• API fault tolerance — If X API fails, user gets retry_later (503), not a rejection. No legitimate claim is penalized for upstream outages
• Signal decay — Historical penalties weaken over time (30% weight at 180+ days) — prevents false positives from legitimate X purges
• Score clamping — Anomalous upstream values (AI score=999) are clamped and logged for audit. No single signal can produce an out-of-range result

To successfully game GASCOIN, an attacker would need to: physically obtain a gas receipt, write a wallet ID on it by hand, photograph it convincingly enough to fool Grok's AI analysis, maintain a legitimate X account with real followers and activity, post a public tweet, hold GASCOIN tokens, and pass admin review. The cost of doing this at scale makes it economically irrational.