Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.7 / 5 from 1,849 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 62,100 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

At the core of the bonk risk check lies a structural pattern that involves the mutability of smart contracts, particularly through proxy upgrade mechanisms. While a deployed contract on the blockchain can sometimes appear immutable and secure due to its code being publicly visible and seemingly permanent, this perception can be misleading when a proxy architecture is in place. The proxy pattern decouples the contract’s logic from its storage, allowing the logic contract to be swapped or upgraded without changing the contract address that users interact with. This architectural choice introduces a subtle but critical layer of risk: the contract’s behavior can be altered long after deployment, which creates a mismatch between perceived immutability and actual control.

The subtlety of this pattern often escapes standard audit procedures, which typically focus on the current implementation code. Audits might not fully encompass the upgrade path or the governance mechanisms controlling the proxy. As a result, latent vulnerabilities can remain hidden until an upgrade is executed. This is particularly concerning because the upgrade mechanism can be exploited to introduce malicious functionality, disable existing safeguards, or manipulate token economics without requiring a fork or redeployment. Such changes might be subtle and hard to detect in real-time, especially if the upgrade authority is centralized and opaque. Understanding the proxy pattern, therefore, requires a comprehensive analysis of not only the smart contract code but also the upgrade governance, historical upgrade activity, and the transparency of the controlling parties.

A key analytical focus in the bonk risk check is the control over proxy upgrade authority. Typically, this authority is held by a private key or a multisignature (multisig) wallet. The private key holder or the multisig signers have the power to authorize upgrades that can fundamentally alter the contract’s logic and behavior. This single control point can effectively override all other security features embedded in the contract, making it a critical vulnerability vector. If the upgrade authority is tightly controlled by a single entity with no oversight, the risk of arbitrary or malicious upgrades increases significantly. Conversely, if the upgrade authority is decentralized or renounced—meaning the contract owner has deliberately relinquished the ability to upgrade—the risk profile becomes much more favorable. This renunciation can effectively guarantee immutability going forward, eliminating the potential for malicious code insertion via upgrades.

However, the risk associated with proxy upgrades is not solely determined by who controls the upgrade keys but also by the governance structures and operational mechanisms surrounding that control. Multisig wallets add a layer of complexity because they require multiple signers to approve an upgrade. This setup reduces the likelihood of unilateral malicious actions but introduces new dynamics such as coordination challenges and potential delays in responding to urgent security patches. The number and reputation of signers in the multisig wallet, as well as their geographic and organizational distribution, can influence the risk profile. If signers are concentrated within a single organization or jurisdiction, systemic risks such as collusion or regulatory pressure may arise. In contrast, a multisig with diverse, reputable signers can mitigate these risks, though it cannot eliminate them entirely.

Another dimension that interacts with proxy upgrade risk is the underlying blockchain’s transaction fee structure and network characteristics. Low-fee networks can enable rapid, frequent transactions at minimal cost, which attackers might exploit to test or deploy contract upgrades quickly. This can facilitate flash attacks or rapid exploit cycles before users or auditors can respond. Conversely, networks with higher fees impose economic friction that can deter frequent upgrade attempts or malicious testing, effectively raising the cost of attack. Moreover, the network’s finality times and block propagation speeds can influence how quickly an upgrade can be recognized and responded to. In some cases, economic incentives and network parameters create an environment where upgrades are less risky; in others, these same factors can accelerate exploit opportunities.

Importantly, the presence of a proxy upgrade pattern alone does not inherently imply malicious intent or imminent risk. Many legitimate projects adopt this design precisely because it enables bug fixes, feature enhancements, or compliance-related modifications after launch. This flexibility is highly valuable in a rapidly evolving ecosystem where unforeseen vulnerabilities or regulatory changes can occur. The pattern becomes concerning primarily when the upgrade authority is centralized without transparent governance or when audits fail to include the upgrade mechanism in their scope. A benign instance of this pattern might involve upgrade keys held by a multisig with reputable, publicly known signers, regular on-chain upgrade transparency, or even a fully renounced upgrade function. These indicators suggest a commitment to security and community trust.

In cases that match this pattern, the risk assessment hinges on the control framework and the audit breadth rather than the mere existence of upgradability. The structural risk patterns highlighted in the bonk risk check serve as a lens to evaluate the underlying governance and operational rigor. While no single pattern is a definitive signal of malicious intent or vulnerability, the aggregation of proxy upgrade control, multisig governance quality, network economics, and audit comprehensiveness can yield a nuanced risk profile. Understanding this complexity is vital for analysts and stakeholders who seek to navigate the nuanced landscape of token security and governance without oversimplifying or overreacting to architectural features common in modern smart contracts.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →