Checks How It Works Trust Install GitHub Support $RUG
Open Source · MIT Licensed · No Paid APIs

Know what you're buying.
Before you buy it.

13 deterministic risk checks against any Solana token or wallet. Fully on-chain. Fully auditable. Zero API keys required.

13
Risk Checks
0
API Keys
100%
On-Chain
MIT
License

13 Factors. One Score.

Every check is deterministic — same mint address always produces the same score, with a full per-factor breakdown showing exactly why.

79

Example: $RUG Token

Young token, thin liquidity, suspicious name flagged. On-chain mechanics clean — no hidden minting, no freeze risk, LP locked on pumpSwap.

1

Mint Authority

Checks if the dev can still print unlimited new tokens. If the mint authority is not set to null, anyone holding is at the creator's mercy.

Max 15 pts
2

Freeze Authority

Detects if the dev retains the ability to freeze any holder's token account — a classic vector for coordinated exit scams.

Max 5 pts
3

LP Locked / Burned

Verifies that liquidity pool tokens are burned or locked. Searches Raydium, pumpSwap, Meteora, and Orca via RPC + DexScreener.

Max 15 pts
4

Liquidity Depth

Flags pools under $20k. A single modest sell can move price 10-20% in thin pools, making them easy to manipulate.

Max 5 pts
5

Holder Concentration

Measures top-10 wallet concentration. Flags tokens where a handful of wallets control >50% of the circulating supply.

Max 10 pts
6

Dev Wallet Holdings

Checks if the deployer wallet holds more than 15% of the circulating supply — a large dev bag means a single sell can crater the chart.

Max 5 pts
7

Token Age

Over 90% of rug-pulls happen in the first week. Checks on-chain age via DexScreener creation timestamp. Under 7 days = flagged.

Max 5 pts
8

Mint History

Scans recent transactions to detect if the dev minted additional tokens after the initial launch — a sign of supply manipulation.

Max 5 pts
9

Honeypot Detection

Simulates a sell through the Jupiter quote API. If the token cannot be sold or has extreme price impact (>50%), it's likely a honeypot.

Max 10 pts
10

Sniper Bot Detection

Analyzes the first 15 mint signatures. If multiple wallets bought within 50 slots of each other, the token was targeted by automated sniping bots.

Max 10 pts
11

Suspicious Name

Flags tokens named "rug", "scam", "ponzi", "honeypot", or similar — these names actively discourage organic buyers and attract only bots.

Max 5 pts
12

Sub-Penny Price

Flags tokens priced below $0.0001 that are either young (<30 days) or have thin liquidity (<$100k). Sub-penny tokens statistically have near-zero organic demand.

Max 5 pts
13

Deployer Dump Risk

Calculates whether the deployer's holdings exceed 50% of the pool's total value. If yes, the dev can crash the market by selling.

Max 5 pts

Four Data Sources. One Pipeline.

Every analysis runs the same deterministic pipeline — no ML, no inference, no hidden state. The same mint always produces the same result.

01

Solana RPC

Fetches mint metadata, token accounts, and transaction history from public Solana RPC nodes. Retries across 4 endpoints with round-robin fallback when rate-limited.

02

DexScreener API

Enriches with real pool data — price, liquidity depth, 24h volume, trading pair info, and creation timestamp. Falls back gracefully when getProgramAccounts is blocked.

03

Transaction Analysis

Paginates mint signatures to detect sniping patterns, post-launch minting activity, and deployer behavior. Pinned to a single RPC node for pagination consistency.

04

Risk Scoring

13 independent checks produce a weighted 0-100 safety score. No upper cap — more flags always means a lower score. Each check is self-contained and independently verifiable.

No Black Boxes. No Hidden Agendas.

Everything you need to verify the tool's integrity is in the repo. Nothing is hidden, nothing is collected, nothing is sold.

🔍

Fully Auditable

The entire engine is a single Python file. Read it. Run it offline. Verify every check against the source code.

Deterministic

Same mint address always produces the same score. No ML, no inference, no floating-point ambiguity. Every factor is a hard integer.

🔗

Fully On-Chain

Every check uses public Solana RPC nodes or free public APIs. No private databases, no premium endpoints, no registration.

📡

No Telemetry

No analytics, no tracking pixels, no phone-home. The tool makes exactly the HTTP calls you can see in the source. Nothing more.

📜

MIT Licensed

Free to use, modify, and redistribute. Fork it, vendor it, ship it as part of your own stack — no restrictions.

🧩

Zero Dependencies

Runs on Python 3.11+ standard library. No pip install, no npm install, no container required. A single file and it works.

Install Any Way You Want.

All packages are published to trusted sources. Always install from PyPI or GitHub Releases.

Hermes Agent Skill (recommended)

hermes skills install official/blockchain/solana-rug

Then ask: "Hey Hermes, is this token safe?"

Single File (no install at all)

curl -OL https://github.com/rugpullnet/solana-rug/releases/latest/download/rugguard.py
python3 rugguard.py token DezXAZ8z7PnrnRJjz3wXBoRgixCa6xjnB7YaB1pPB263 --md

PyPI (trusted package index)

pip install solana-rug
solana-rug token DezXAZ8z7PnrnRJjz3wXBoRgixCa6xjnB7YaB1pPB263

From Source

git clone https://github.com/rugpullnet/solana-rug.git
cd solana-rug
python3 scripts/rugguard.py --help

Support Solana Rug Guard

This tool is free, open source, and will always remain free. If it's helped you avoid a bad trade or understand a token better, consider supporting the project by grabbing a small bag of $RUG.

F4J5LKyEQraMem8nspPAzwHXaaKMMDsxyt7GUK94pump

Trade on pumpSwap (RUG/SOL) · View Chart →

Every buy adds locked liquidity to the pool and helps keep development sustainable.