Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.7 / 5 from 2,680 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 65,429 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

At the core of contract permissions intelligence lies a nuanced understanding of the structural control patterns embedded within smart contracts, patterns that are often obscured beneath an outward appearance of immutability. Smart contracts, by design, are intended to be self-executing and tamper-resistant once deployed onto a blockchain. However, this idealized permanence is frequently complicated by the incorporation of proxy upgrade mechanisms, which introduce a layer of controlled mutability that can fundamentally alter contract behavior or permissions well after the initial launch. This dichotomy between perceived immutability and actual modifiability creates a complex landscape for risk analysis: contracts that seem fixed and unchangeable may, in reality, allow their core logic or access permissions to be modified at the discretion of authorized entities.

This divergence presents a material challenge for analysts because the presence of an upgrade path means that the contract’s risk profile is dynamic rather than static. A contract that passes an audit at launch might still harbor latent vulnerabilities if the upgrade logic itself is not exhaustively scrutinized or if governance processes around upgrades are opaque. The proxy pattern often involves a separate contract or set of contracts that hold the implementation logic, with the proxy delegating calls to these implementations. Control over the upgrade functions, typically restricted to specific privileged addresses, effectively grants those actors the power to redefine the contract’s behavior entirely. This capacity can sometimes be harnessed legitimately to patch bugs or add new features, but it simultaneously opens the door to misuse if private keys controlling these privileges are compromised or wielded irresponsibly.

Within contract permissions intelligence, the most critical factor often centers on who holds the private keys associated with privileged addresses such as contract owners, administrators, or multisignature (multisig) wallets. Private keys serve as the ultimate gatekeepers, authorizing all privileged actions from these addresses without any external recovery mechanism if lost or stolen. This singular control point means that even a contract with well-conceived permission hierarchies and safeguards can be swiftly undermined if these keys fall into malicious hands or if key holders act with conflicting incentives. While multisig wallets can mitigate this risk by distributing control across multiple parties, thereby requiring consensus before executing sensitive operations, they introduce their own complexities. Multisig setups can sometimes face operational challenges, such as delays in obtaining signers’ approvals or vulnerabilities if one or more signers are unavailable, compromised, or colluding.

An often-overlooked dimension in contract permissions intelligence is the interplay between transaction fee structures and contract mutability. These elements interact in ways that can materially influence both the security posture and practical usability of permissioned contracts. On higher-fee networks, elevated transaction costs can serve as a natural deterrent against certain attack vectors, such as transaction flooding or spamming attempts aimed at triggering permissioned functions or probing upgrade mechanisms. In contrast, low-fee networks reduce the economic barrier for repeated contract interactions, amplifying the feasibility of economically motivated attacks designed to explore or exploit upgrade pathways. In cases where proxy upgradeability is combined with low transaction fees, attackers may find it more cost-effective to craft and execute malicious upgrade proposals or to stress-test contract permissions, increasing the likelihood of exploitation.

Despite these risks, the presence of multisig controls or additional governance mechanisms can offset some vulnerabilities introduced by low transaction costs. Multisig arrangements require multiple independent approvals before executing sensitive operations, making it harder for a single compromised key to effect unauthorized changes. However, this increased security comes at the cost of operational agility. The need for multiple signatories can slow legitimate upgrades or emergency fixes, potentially exposing the contract to other forms of risk, such as prolonged exposure to known bugs or vulnerabilities while awaiting consensus. Furthermore, the complexity of multisig processes can sometimes lead to human error or coordination failures, which themselves become vectors for risk.

Contract permissions intelligence ultimately illuminates a fundamental tension in smart contract design between flexibility and security. Upgradeability and private key control confer adaptability and governance capabilities, allowing projects to evolve and respond to emerging needs or threats. Yet these same features introduce persistent vectors for delayed exploitation or insider risk that may only manifest well after deployment. The presence of proxy upgrade mechanisms and permissioned control is not inherently indicative of malicious intent. Many projects rely on these patterns responsibly to maintain and improve their protocols. The benign or malign nature of these permissions depends heavily on transparency around governance processes, the thoroughness of audits encompassing upgrade logic, and the rigor of private key management practices.

Absent these safeguards, the very mechanisms designed to enable contract evolution can become latent vulnerabilities. Contracts with unchecked upgrade authority or poorly secured privileged keys can be commandeered to change tokenomics, redirect funds, or disable security features without immediate detection. This dynamic underscores the importance of continuous monitoring and holistic analysis that goes beyond initial audit reports to include governance activity, key holder behavior, and network-specific considerations such as transaction fee economics. Contract permissions intelligence, therefore, demands an integrative approach that appreciates the interplay between technical design, operational controls, and economic incentives shaping the long-term risk profile of smart contracts in decentralized ecosystems.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →