What is a rug pull in crypto?

A rug pull is when a token's developer or insider drains liquidity, dumps a large insider allocation, or activates malicious contract logic that traps holders — crashing the price to near-zero. Rug pulls are most common on memecoins and newly launched DEX tokens, where contracts are unverified and creator wallets hold concentrated supply.

How can I tell if a token is a honeypot?

A honeypot is a contract where buys go through but sells are blocked or taxed at 90%+. The fastest detection is to simulate a sell on the contract using a tool like Tenderly or a rug-check service. Sharpe's rug check runs the simulation automatically — if the contract is a honeypot, it flags red and prevents you from buying.

What's a safe creator wallet share?

Below 5% of total supply is safe. 5–15% is yellow — acceptable for some tokens (legitimate team allocations) but worth monitoring. Above 15% is red — the deployer can dump on you. Above 30% is a near-guaranteed rug risk. Always check on-chain holder lists, not just whitepaper claims.

Why does liquidity locking matter?

If liquidity isn't locked, the token's deployer can withdraw all the LP tokens at any moment, draining the pool and crashing the price. Locked liquidity (via Unicrypt, Team.Finance, or burn-to-zero) means the deployer can't pull the funds. Look for a multi-month lock duration; below 30 days is suspicious.

What's a typical rug-pull fee structure?

Many rug contracts have asymmetric fees: 1-5% buy tax, 30-90% sell tax. The contract is buyable but unsellable at any reasonable cost. Always check fee structure before buying. Sharpe shows the buy and sell tax in the rug check report.

Can I rug-check a token on chain X?

Sharpe currently supports Solana, Ethereum, Base, BSC, Arbitrum, and Polygon for full automated rug checks with security flags. Other chains are partially supported through generic on-chain analysis. The full coverage is at sharpe.ai/rug-check/chain.

What's the rug-pull risk score?

Sharpe computes a 0–100 risk score combining nine independent signals: contract verification, mint capability, fee structure, liquidity lock status, holder concentration, deployer wallet share, blacklist function presence, recent volume patterns, and known-scam database matches. 0–30 is low risk; 30–60 yellow; 60–100 high risk. The full methodology is at /rug-check/risk.

How recent does the data have to be?

Real-time. Sharpe pulls live on-chain data when you submit an address — it's not a cached database lookup. Liquidity, holder distribution, and contract state are read from the chain at query time. The risk score reflects the current state, not a historical snapshot.

Is the rug-check tool free?

Yes. Unlimited rug checks with no signup, no rate limit, free across all 6 supported chains. The same data is available through the Sharpe API at the free 30 req/min tier — see /pricing for higher tiers.

Should I trust a token that passes all checks?

Passing all automated checks reduces but doesn't eliminate risk. A determined scammer can deploy a contract that passes static checks and then activate malicious logic via proxy upgrade or off-chain coordination (e.g. socially-coordinated dump). Always size positions appropriately for the token's age, liquidity, and team transparency — automated checks are necessary but not sufficient.

Learn

How to Rug-Check a Crypto Token: A 9-Step Field Guide

Most rugs leave fingerprints in the contract, the holder distribution, and the liquidity. Here's how to spot them — and the live tool that automates the checks.

The short answerTo rug-check a crypto token, run nine checks: (1) verify the contract source code is published on the chain explorer; (2) confirm there's no infinite mint function; (3) check the deployer wallet share is below 5%; (4) verify liquidity is locked or burned; (5) ensure the contract isn't a honeypot (sells go through); (6) confirm fee structure is reasonable (≤5% on each side); (7) check holder concentration (top 10 holders ≤30% combined); (8) verify the contract doesn't allow blacklisting individual addresses; (9) cross-check against known scam databases. Sharpe's rug check tool runs all nine automatically against any address on Solana, Ethereum, Base, BSC, Arbitrum, or Polygon — free with no signup.

Open the live rug check tool

By Rishabh Narang·Published Apr 26, 2026

Why every memecoin trade should start with a rug check

Memecoins, AI agent tokens, and most DEX-launched tokens are unaudited. Most are deployed with copy-paste contract templates. A meaningful fraction — even on the major chains — are deliberately malicious. The default position should be: every token is a rug until you've checked the fingerprints.

Rug checking isn't paranoia, it's hygiene. The checks are systematic, they take five to fifteen minutes manually, and they catch 80–90% of the rugs that drain retail wallets every week. The other 10–20% are sophisticated, governance-style rugs (legitimate launches that flip malicious after raising) — those require ongoing monitoring rather than a single check.

The nine checks below are what professional traders run before any DEX position. The Sharpe rug check tool automates all nine against any address on Solana, Ethereum, Base, BSC, Arbitrum, or Polygon. The walkthrough below is the manual version so you understand what the tool is doing — and so you can rug-check tokens on chains the automated tool doesn't yet support.

The nine checks

1. Verify the contract source code is published. Open the chain explorer (Etherscan, Solscan, BaseScan, BscScan, Arbiscan, Polygonscan). Search the token contract address. The contract should have a green checkmark or "Source Code" tab — meaning the deployer published the source for public audit. Unverified contracts could contain anything; treat as yellow flag minimum, red flag for anything you don't have prior conviction on.

2. Search for mint functions. In the verified source, search for the strings mint, _mint, or mintTo. If a public function with mint in its name is callable by the deployer or owner, the supply can be diluted at any time. Stablecoins (USDC, USDT) have controlled mint and that's fine. For a memecoin, mint capability is usually a red flag.

3. Check the deployer wallet share. On the chain explorer, click "Holders" on the token page. Find the deployer address (often labeled or the first holder created at deploy). Check what percentage of total supply they still hold.

Deployer share	Risk
0–5%	Safe — supply is distributed
5–15%	Yellow — monitor for selling
15–30%	Red — material dump risk
Above 30%	Severe — exit

4. Verify liquidity is locked. Click on the LP token (the Uniswap V2/V3, PancakeSwap, Raydium pair) on the chain explorer. Check who holds the LP tokens. Three patterns are safe:

LP tokens are sent to a verified locker (Unicrypt, Team.Finance, PinkSale Lock, or chain-native equivalents) with a documented lock duration of at least 6 months.
LP tokens are sent to a burn address (0x0000...0dEaD on EVM, or the equivalent system burn address on Solana). Liquidity can never be withdrawn — the strongest possible guarantee.
LP tokens are held by a multi-sig wallet with documented governance.

If LP tokens are held by an EOA (single private key wallet), the deployer can drain the pool at any moment. Red flag.

5. Test for honeypot. A honeypot is a contract where buys go through but sells are blocked or taxed at 90%+. Manual test:

Simulate a sell on Tenderly using the deployer's RPC, OR
Use a free honeypot scanner (Honeypot.is for EVM, RugCheck.xyz for Solana), OR
Submit through Sharpe's rug check which runs the simulation automatically.

A pure honeypot is unsellable at any price. A "soft honeypot" lets small sells through but blocks larger ones. Both are red flags.

6. Audit the fee structure. Find the contract's _transfer or _takeFee function. Read the buy tax (fee on buys) and sell tax (fee on sells). Three patterns:

Equal buy/sell, ≤5%: typical for legitimate tokens.
Equal buy/sell, 5-15%: aggressive but seen in some legitimate tokens (e.g. fee-on-transfer reflection tokens).
Asymmetric (low buy, high sell): scam pattern. Always red flag.

A token with 1% buy tax and 30% sell tax is buyable but not profitably sellable.

7. Inspect holder concentration. Top 10 holders combined share, excluding burn addresses and the LP contract:

Below 20%: healthy distribution.
20-30%: typical for newer tokens.
30-50%: consolidated — single-whale risk.
Above 50%: dangerous. A few holders can dump and crash the price.

Cross-reference top holders against known team wallets, treasury contracts, and CEX cold wallets. Genuine large holders can be benign (treasury, CEX) but should be transparent.

8. Look for blacklist or freeze functions. Search the source for blacklist, excludeFromTransfer, freeze, or pause functions accessible to the deployer. These let the deployer block specific addresses — including yours after you've bought. Stablecoins like USDC and USDT have blacklist functions for regulatory compliance, which is acceptable. For a memecoin or DEX token, a blacklist function is a yellow-to-red flag.

9. Cross-check against scam databases. Run the contract address through:

GoPlus (gopluslabs.io) — comprehensive on-chain risk API.
ScamSniffer (scamsniffer.io) — phishing and scam database.
CertiK Skynet — security audits and incident database.

Sharpe's rug check runs against several of these simultaneously. A recent match in any database is a definitive red flag — exit even if all other checks pass.

Reading the composite risk score

If you're using Sharpe, the rug check returns a 0-100 risk score combining all nine checks:

Score	Tier	Meaning
0–30	Low	Passes all major checks. Reasonable risk.
30–60	Yellow	Some yellow flags. Manual review required.
60–100	High	Multiple red flags. Avoid or trade tiny size.

The full methodology — how each check contributes to the score, the exact thresholds, the bot-filtering rules — is described in this guide and runs live at /rug-check. Open methodology is a deliberate choice; gating it would prevent traders from sanity-checking the score.

Common rug pull patterns by chain

Different chains attract different rug styles:

Solana memecoins. Pump.fun launches are the highest-volume breeding ground. The most common scam pattern: launch on Pump.fun, graduate to Raydium when market cap hits the threshold, dump the deployer allocation immediately into the new liquidity. The Sharpe Solana rug check flags Pump.fun-graduated tokens and tracks deployer behavior across the launch lifecycle.

Base / Ethereum memecoins. The Clanker and Base ecosystem has attracted both legitimate and rug-prone deployments. The patterns to watch: short-lived liquidity locks (under 30 days), high asymmetric sell taxes, anonymous deployer wallets connected to past rugs.

BSC tokens. PancakeSwap launches still dominate scam volume. The patterns: copy-paste reflection contracts with hidden whale-dump mechanisms, owner-only mint, removable liquidity. Manual rug checks are slower on BSC because the explorer UX is rougher; Sharpe's BSC rug check automates the workflow.

Arbitrum and Polygon. Lower scam volume than other chains — fewer copy-paste exploiters, more legitimate launches. Still run the nine checks; just expect a higher pass rate.

Things automated checks can miss

Manual review still adds value for sophisticated rugs:

Proxy contract upgrades. A contract that's an ownable-upgradeable proxy can have its logic replaced post-launch. The current source might be safe; the next version after upgrade could be malicious. Automated checks flag the proxy presence but can't predict future upgrades. Manually evaluate whether the upgrade governance is decentralized (multi-sig with 6+ signers) or single-key.

Off-chain coordination. If the deployer team coordinates a dump through Discord or Telegram pre-announced, the contract might pass all on-chain checks but the social coordination still rugs holders. Automated tools can't see this. Vigilance on social channels is required for high-conviction holds.

Time-locked malicious logic. Some scam contracts include malicious functions that activate only after a block-number or timestamp. The contract is honest at deployment, scam at unlock. Manual code audits catch this.

Liquidity migration scams. Deployer announces a "v2" migration, asks holders to move funds to a new contract — which is the actual rug. Off-chain awareness of this pattern is the only defense.

For high-stakes positions (>$10K), don't rely solely on automated rug checks. Read the contract, check social channels, and consider your exit liquidity.

Where to go from here

If you're sizing a DEX position right now, run the rug check at /rug-check. Paste the address, get the 0-100 score in 30 seconds. If it scores below 30, you've passed the basic safety bar; size accordingly. If 30-60, do the manual checks above. If above 60, walk away.

For high-frequency DEX trading, every position should pass through the rug check workflow. The cost is 30 seconds; the savings are catastrophic loss avoidance.

The tool is free, the methodology is open, and coverage spans the six major chains. The walkthrough above is the manual version — same checks, more time. Whichever you choose, do them every time.

Frequently asked questions

Use it on Sharpe

Related tools

Keep reading

Related guides

Multi-Chain DEX Screener GuideFind legitimate DEX tokens across 60+ chains with security checks.

Sources

External references cited in this guide

GoPlus Security — Token Risk APIGoPlus Labs
ScamSniffer — Phishing & Scam DatabaseScamSniffer
How to Detect a Rug Pull — CointelegraphCointelegraph

Try it free

Open live rug check tool

All Sharpe tools are free and require no signup. Live data across 13 perpetual exchanges and 50+ coins.

Open the live rug check tool