Drew is a High-Security Privilege Control System designed for Discord communities that want absolute OpSec and accountability. It shifts the paradigm from reactive punishment to proactive, verified authorization.
Most bots react to damage after it happens. Drew assumes that any account, including moderators and administrators, can be compromised. To mitigate this, Drew implements a Zero-Trust architecture:
- Verified Elevation (SUDO): Administrative permissions are not static. Users must explicitly elevate their privileges via
/sudo enterfor a limited time (TTL session). - Fail-Closed Design: Encourages an architecture where native Discord permissions are minimized, routing high-risk actions through the bot's verified channels.
- Anomaly Monitoring: Instead of simple rate-limits, Drew monitors behavioral anomalies to detect rogue tokens or compromised accounts.
- Go 1.24+
- Lavalink server (optional)
- VirusTotal API Key (optional)
-
Clone the repository:
git clone https://github.com/neevets/drew.git cd drew -
Configure environments:
- Copy
.env.prod.exampleor.env.dev.exampleto.env. - Set env keys
- Copy
-
Build and Run:
go build -o drew-bot ./cmd/bot ./drew-bot
- Core: Go
- Library: Disgo
- Database: ORM GORM with PostgreSQL