Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.9 / 5 from 2,673 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 54,516 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

Project risk rankings fundamentally hinge on the structural pattern of control and mutability within a crypto project’s architecture, a framework that extends beyond superficial assessments like audits or visible code immutability. While an audit may certify that a contract’s code appears secure at a fixed point in time, it does not necessarily capture the full spectrum of risk if the contract employs upgradeable proxy patterns. These proxies can enable the underlying logic of a contract to be altered post-deployment, sometimes dramatically transforming the project's behavior and risk profile after initial scrutiny. This distinction between apparent immutability and actual mutability complicates any attempt at precise risk evaluation because a clean audit alone does not guarantee ongoing security if upgrade pathways remain unchecked or inadequately governed.

The proxy upgrade pattern is widely used in decentralized finance to facilitate ongoing improvements and bug fixes without necessitating redeployment of the entire contract ecosystem. However, this flexibility introduces a latent risk vector: if the authority to upgrade the contract logic is centralized or insufficiently controlled, malicious actors or insider threats could exploit this mechanism to insert harmful code or redirect funds. It is essential to recognize that the mere presence of upgradeable contracts does not by itself confirm malicious intent or an imminent security breach. Instead, the critical factor is how the upgrade authority is managed, including the transparency of upgrade processes and the existence of community or governance checks. When upgrade rights are opaque or concentrated in a single entity, the project risk ranking tends to escalate, reflecting a higher probability of exploit or governance failure.

Among the various factors influencing project risk rankings, control over private keys can sometimes carry the most analytical weight due to its fundamental role in on-chain authority. The private key functions as the ultimate gatekeeper for any address or contract, granting the holder the ability to execute any transaction or upgrade that the contract’s design permits. This control means that even structurally sound mechanisms like multisig wallets or proxy contracts can become vulnerable if key management is weak, centralized, or subject to social engineering. For instance, a multisig wallet with too few signers or signers who lack operational security may not offer meaningful protection against compromise. Conversely, excessively large multisig configurations can induce coordination delays that hamper timely responses to threats. Understanding who holds these keys, the thresholds for action, and the governance frameworks around them is critical for accurate project risk rankings, as these factors directly govern a project’s operational security and potential for both malicious and accidental changes.

Transaction fees and multisig wallet configurations frequently interact to shape the operational environment and risk posture of a project. High-fee networks tend to discourage spam and low-value transactions, which can protect against certain attack vectors such as transaction flooding or front-running that relies on low-cost chain activity. However, these fees can also limit user engagement for small trades or micro-transactions, potentially reducing the liquidity and user base that underpin a healthy token ecosystem. In contrast, low-fee chains may invite spam attacks that strain network resources or enable manipulation of on-chain data, which can distort metrics like volume or liquidity depth that influence market perception. Multisig wallets add a layer of complexity by requiring multiple signatures for sensitive actions, reducing single points of failure but increasing coordination overhead. This overhead can delay critical interventions during security incidents or governance votes, affecting the project’s agility in responding to emergent risks. When considered together, fee structures and multisig arrangements influence a project’s resilience and responsiveness, two attributes that factor heavily into nuanced risk rankings.

In generalized terms, the presence of upgradeable contracts or complex control schemes in project risk rankings does not inherently indicate malicious intent or imminent failure. Many legitimate projects use proxy patterns precisely because they enable bug fixes, feature additions, or governance upgrades without necessitating full contract redeployment. Similarly, multisig wallets can enhance security by distributing authority across multiple actors, thereby mitigating the risk posed by a single compromised key. The key consideration is transparency and governance: projects that clearly document upgrade rights, maintain robust multisig processes, and limit private key exposure tend to mitigate these risks effectively. These governance mechanisms can sometimes include time-locked upgrades, community voting, or multisig signers drawn from diverse stakeholders, all of which increase confidence in the project’s long-term stability. Thus, while structural patterns such as upgradeability and multisig control introduce vectors for risk, they also provide flexibility and security benefits when managed properly.

It is also important to contextualize these structural risk factors within the broader ecosystem and market dynamics. For instance, the liquidity pool depth relative to market capitalization can influence how easily an attacker might manipulate token prices or execute a rug pull. Thin pools under a certain threshold can make the project more vulnerable to sudden liquidity withdrawals or market shocks, which is a crucial consideration in project risk rankings. However, the presence of a locked liquidity pool alone does not confirm security; the nature of the lock, who controls the lock, and the duration are equally significant. Similarly, holder concentration plays a role: a token with a high percentage of supply controlled by a few addresses can sometimes pose a risk of coordinated dumps or governance manipulation, but this concentration does not necessarily imply malicious intent if the holders are known, reputable entities or if there is an established governance framework.

In sum, project risk rankings emerge from a layered analysis of contract mutability, key control, transactional environment, liquidity dynamics, and governance transparency. No single factor decisively determines risk, and many patterns that elevate risk profiles can also coexist with legitimate project needs and operational flexibility. This nuanced understanding is essential for interpreting any project risk ranking thoughtfully, recognizing that structural patterns signal potential vulnerabilities but do not alone confirm intent or outcome.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →