Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.7 / 5 from 3,300 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 52,819 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

Contract control analysis is a crucial dimension in assessing the structural risks embedded within smart contracts, particularly in decentralized finance and token ecosystems. At its core, this analysis seeks to understand the locus of authority capable of changing or influencing a contract's behavior after it has been deployed on a blockchain. While many contracts give the initial impression of immutability — a codebase that, once deployed, remains fixed and unalterable — this is often a surface-level assumption that can be misleading. The design patterns underlying these contracts can introduce subtle complexities that materially affect the level of control retained by specific actors, which in turn impacts trust assumptions and risk profiles.

A prevalent design pattern that complicates straightforward assumptions about immutability is the proxy upgrade pattern. In this architecture, the contract that users interact with — the proxy — delegates calls to a separate logic contract, whose address can be updated. This allows the logic contract to be replaced with a new implementation without changing the proxy’s address. From a user perspective, the contract seems static, but under the hood, the behavior can change over time. This design is often employed to enable upgrades, bug fixes, or feature enhancements post-deployment, which serves legitimate and valuable purposes. However, this flexibility comes at the cost of introducing a hidden vector for control changes that might not be readily apparent from a simple code inspection or initial audit. The proxy pattern thus introduces a structural mismatch between perceived and actual immutability, creating a nuanced risk landscape.

Among the various facets of contract control analysis, the presence, scope, and governance of upgrade mechanisms such as proxies stand out as the most analytically significant factors. The critical question is who holds the authority to initiate an upgrade and under what conditions. Control over upgrade authorization is typically exercised through private keys or multisignature wallets, but the concentration and security of these keys vary widely. A contract where upgrade authority is concentrated in a single key holder without robust governance mechanisms can become a latent risk that persists long after the initial deployment and audit. This risk can manifest through malicious upgrades, where the logic contract is replaced with code that alters token economics or unlocks backdoors, or through accidental errors introduced in upgrades. It is important to acknowledge, however, that the mere presence of upgrade mechanisms does not by itself confirm malicious intent or vulnerability. Rather, it signals the need for careful scrutiny of governance arrangements and operational security.

The interplay between network characteristics and contract control mechanisms further complicates the risk profile. For example, on low-fee blockchains, the economic barrier to executing transactions is relatively minimal, which can facilitate rapid and repeated upgrade attempts if control is compromised. This dynamic means that a compromised key on a low-cost network may enable a bad actor to quickly roll out multiple harmful upgrades or spam the network, exacerbating damage. Conversely, multisignature wallets introduce operational friction by requiring multiple independent approvals to execute sensitive actions such as upgrades. While this reduces the single-point-of-failure risk inherent in single-key control, it also introduces challenges in responsiveness and coordination, especially in time-sensitive scenarios. Therefore, a contract that employs proxy upgrades secured by a multisig on a low-fee chain faces a different risk landscape than one controlled by a single key on a high-fee chain. Each configuration brings trade-offs that must be understood in context.

Beyond upgrade mechanisms, contract control analysis extends to other permissions embedded in smart contracts. For instance, some contracts include administrative functions that allow token minting, burning, or pausing of transfers. Contracts with active mint authority, where a privileged party can create new tokens at will, can sometimes disrupt tokenomics by diluting existing holders. The impact of such permissions depends heavily on their governance and transparency. If minting is tightly controlled by multisig governance or time delays, the risk profile is significantly mitigated. However, if the mint function is unrestricted or controlled by a single key, it introduces a material risk vector. Similarly, pause and freeze functions can be used legitimately to mitigate hacks or bugs but can also be misused to lock user funds.

It is vital to note that the analysis of contract control patterns alone does not provide a conclusive verdict on the security or trustworthiness of a token or platform. For example, the presence of a proxy upgrade pattern or administrative permissions is not necessarily indicative of bad faith or imminent risk. Many reputable projects rely on these mechanisms to maintain flexibility and adaptability in a rapidly evolving ecosystem. The differentiating factor lies in how these controls are structured, governed, and disclosed. Transparent governance frameworks, multisignature controls with reputable signers, and clear upgrade policies that include community oversight can transform what might otherwise be perceived as risky control vectors into manageable elements of operational design.

In practice, contract control analysis should be viewed as an ongoing process rather than a one-time audit checkpoint. The dynamic nature of upgradeable contracts means that risk profiles can evolve over time. A contract initially governed by a robust multisig may later experience changes in signers or governance processes that alter its security posture. Similarly, operational security lapses, such as compromised private keys or insider threats, can suddenly convert latent risks into realized exploits. Therefore, continuous monitoring of contract control arrangements, including the status of multisigs, key holders, and upgrade proposals, is essential for maintaining a realistic understanding of risk.

In summary, contract control analysis uncovers structural patterns that can introduce hidden vectors of authority over smart contracts after deployment. The proxy upgrade pattern exemplifies how perceived immutability can mask underlying mutability. The concentration, governance, and security of keys controlling upgrades are pivotal in shaping risk. Network factors such as transaction fees and multisig configurations influence this risk further. While these patterns do not confirm malicious intent by themselves, they highlight the necessity of nuanced and ongoing scrutiny to navigate the delicate balance between flexibility and security in decentralized ecosystems.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →