Before buying a new crypto token, check liquidity, mint authority, sellability, contract permissions, holder concentration and trading depth. This Decentralised News guide explains how to spot rug pulls and use the DN Rug Risk Scanner framework before risking capital.
New crypto tokens can move fast, but rug pulls often leave obvious warning signs before the collapse.
The most important checks are simple. Is liquidity locked or burned? Has mint authority been renounced? Can users actually sell the token? Is the contract verified? Are there dangerous functions such as blacklist controls, pause controls, upgrade permissions or modifiable taxes? Is supply concentrated in a few wallets? Is liquidity deep enough to support selling?
The DN Rug Risk Scanner is a guided checklist framework, not a magic safety certificate. It does not promise that any token is safe. Instead, it walks users through the key risk checks, explains what each result means, and turns the findings into a simple red, amber or green risk verdict.
A single critical failure should usually be enough to walk away. Unlocked liquidity means the team may be able to pull the market. Active mint authority means supply may be inflated. A failed sell test means the token may be a honeypot. Unknown information should count as risk, not comfort.
The safest approach is to treat every new, low-liquidity token as guilty until proven otherwise. Use live explorers, honeypot checkers, liquidity lockers and contract scanners before buying. Trade newer assets only with money you can afford to lose, use vetted venues where possible, and move long-term holdings into self-custody.
A rug pull rarely looks like a scam at first.
It usually looks like a launch.
The chart goes vertical.
The Telegram or X community gets loud.
Influencers start posting contract addresses.
Early buyers show screenshots.
Liquidity appears.
The fear of missing out takes over.
Then the trap triggers.
The team pulls liquidity.
Selling becomes impossible.
A hidden tax changes.
New supply is minted.
A concentrated wallet dumps.
The contract owner blacklists buyers.
The price goes to zero, sometimes in one block.
Most victims did not fail because they lacked intelligence. They failed because they skipped a small set of checks that would have exposed the risk before they bought.
Those checks are knowable.
They are not secret. They are not only for developers. They are the same basic questions every new-token investor should ask before touching a fresh contract.
A rug pull is a crypto scam where insiders create a token, attract buyers, then remove value from the market in a way that leaves holders unable to exit.
The most common versions include:
Liquidity pull
The team removes liquidity from the trading pool, leaving buyers with a token that has no real market.
Mint attack
The team creates new tokens after launch and sells them into the market, crushing price.
Honeypot contract
Buy transactions work, but sell transactions fail or become economically impossible.
Malicious contract controls
The contract includes hidden powers such as blacklists, trading pauses, upgrade rights or adjustable taxes.
Concentration dump
A few wallets control too much supply and can collapse the market by selling.
The key lesson is simple: rugs usually fail basic due diligence before they fail on the chart.
This is the first and most important check.
When a token trades on a DEX, buyers need liquidity in a pool. If the team controls the liquidity provider tokens, they may be able to remove the liquidity at any time.
That is the classic rug pull.
A safer setup is where liquidity is either locked in a reputable time-lock contract or permanently burned.
Ask:
Is the liquidity locked?
How long is it locked for?
Which locker is being used?
Are LP tokens burned?
Can the team still access the liquidity?
Is the lock long enough to matter?
Red flag: Liquidity is not locked or cannot be verified.
If liquidity is unlocked, the project may be able to pull the market even if everything else looks clean.
Mint authority controls whether new tokens can be created.
If the team can still mint new supply, they may be able to inflate the token and dump new tokens into the market.
On EVM chains, check whether ownership is renounced and whether mint functions exist. On Solana, check whether mint authority is disabled or set to null.
Ask:
Can the team create more tokens?
Is ownership renounced?
Are mint functions still active?
Is the supply fixed?
Can a proxy upgrade re-enable minting?
Red flag: Mint authority is active or unclear.
A token with active mint control is not automatically a scam, but it requires serious justification. For a new meme token or small-cap launch, active mint authority is usually a major warning.
A honeypot is one of the cruelest token scams.
Buying works. Selling fails.
The chart may look active because buys are coming in, but holders cannot exit. This creates the illusion of demand until buyers discover they are trapped.
Before buying a new token, run a sell simulation using a honeypot checker or a small test trade where appropriate.
Ask:
Does the token pass a sell simulation?
Is the sell tax reasonable?
Can ordinary wallets sell?
Are only selected wallets allowed to sell?
Does the contract include blacklist controls?
Can trading permissions change after launch?
Red flag: The token cannot be sold, or the sell tax is extreme.
If you cannot sell, nothing else matters.
A verified contract allows users and scanners to inspect the code.
An unverified contract is a black box.
Even verified contracts can include dangerous functions, so verification alone is not enough. But if a contract is unverified, users cannot easily confirm what powers the team has retained.
Look for:
Blacklist functions
Pause functions
Owner-only transfer restrictions
Modifiable tax functions
Proxy upgrade controls
Hidden mint functions
Trading enable or disable switches
Whitelist-only sell permissions
Red flag: The contract is unverified, or verified with dangerous owner permissions.
If a project wants public money but hides the contract logic, that is not transparency. It is risk.
After the critical four, check distribution and liquidity depth.
A token can pass liquidity and sell checks but still be dangerous if a few wallets control the supply.
Check the top holders.
Exclude obvious burn, lock and liquidity pool wallets. Then ask how much supply is controlled by real wallets.
Ask:
Does one wallet hold too much supply?
Do the top 10 wallets control a dangerous percentage?
Are there linked wallets splitting supply?
Are deployer wallets still holding large balances?
Are early wallets selling gradually?
Red flag: A few wallets can crash the market.
A token does not need a malicious contract to collapse. A concentrated holder base can do the damage manually.
Thin liquidity makes price manipulation easy.
A token with a large market cap but shallow liquidity can drop dramatically when one wallet sells.
Ask:
How much real liquidity is in the pool?
Is liquidity deep relative to market cap?
How much slippage occurs on a modest sell?
Is volume real or circular?
Does liquidity sit on one venue only?
Red flag: Market cap is high, but liquidity is thin.
Thin pools are dangerous because exits become crowded quickly.
Brand-new tokens carry the highest base rate of fraud.
That does not mean every new token is a scam. It means the burden of proof should be higher.
Ask:
Is the token less than 24 hours old?
Has the team launched previous projects?
Has the token survived any sell pressure?
Are there independent holders?
Has liquidity stayed in place after launch?
Red flag: Brand-new token with unknown team, unknown liquidity and aggressive promotion.
The newer the token, the more skeptical the investor should be.
Some tokens charge transaction taxes.
A low fixed tax may be part of the token design. A high or adjustable tax can become a hidden rug tool.
Ask:
What is the buy tax?
What is the sell tax?
Can the team change the tax?
Can sell tax be raised to 100%?
Is the tax sent to a team wallet?
Red flag: High, unclear or owner-adjustable taxes.
A modifiable tax can become a soft honeypot.
The DN Rug Risk Score is not a safety certificate.
It is a risk model based on visible red flags.
A low score means no major warning signs were found in the checks. It does not mean the token is safe. A team can still act maliciously later, a bug can still appear, liquidity can still vanish through indirect means, and price can still collapse.
A green result means the key protections appear to be in place.
Liquidity is locked or burned.
Mint authority is renounced or absent.
The token appears sellable.
The contract is verified and does not show obvious dangerous functions.
Holder concentration and liquidity depth are reasonable.
This lowers risk, but it does not remove it.
An amber result means risk is visible.
Maybe liquidity is locked for only a short period. Maybe supply is moderately concentrated. Maybe the token is very new. Maybe contract permissions are not fully clean.
This is not an automatic scam verdict.
It is a pause signal.
A red result means the safest action is to walk away.
The token may have unlocked liquidity, failed sellability, active mint authority, severe concentration or dangerous contract permissions.
In rug analysis, one fatal flaw can be enough.
A token does not need to fail every check to be dangerous.
Many traders treat uncertainty as neutral.
That is a mistake.
If liquidity cannot be verified, assume risk.
If mint authority cannot be checked, assume risk.
If the sell test fails to load, assume risk.
If the contract is unclear, assume risk.
If holder concentration is hidden or confusing, assume risk.
A new token does not deserve the benefit of the doubt.
The burden of proof is on the token.
If you cannot verify the protection, you do not have the protection.
The chart is the bait.
The contract is the truth.
Before looking at momentum, influencers or price targets, check whether the token can actually survive basic due diligence.
Use block explorers, DEX analytics, honeypot simulators, liquidity lockers and holder dashboards.
For supported chains, start with:
Explorer page
DexScreener pair page
Honeypot simulation
Liquidity lock proof
Holder list
Contract verification page
Deployer wallet history
The goal is not to become a developer.
The goal is to avoid obvious traps.
The easiest way to reduce rug risk is to avoid the most dangerous venue layer.
Tokens listed on major centralised exchanges have usually passed at least some listing and compliance checks. That does not make them risk-free, but it removes many random-contract risks.
For newer and higher-risk assets, compare vetted venues such as OKX, MEXC, Gate.com and KCEX, depending on jurisdiction, product availability and suitability.
Trading and holding are different activities.
After buying assets you plan to hold, consider moving them into self-custody using a hardware wallet such as Ledger or CoolWallet.
Cold storage does not protect you from buying a bad token.
It protects long-term holdings from exchange failure and some platform-level risks.
New tokens are extreme-risk assets.
Even a clean contract can fail because of poor liquidity, bad tokenomics, weak demand, insider selling or market rotation.
Only use capital you can afford to lose entirely.
Before buying any new token, answer these questions:
Is liquidity locked or burned?
How long is liquidity locked for?
Who controls the liquidity?
Is mint authority renounced?
Can the supply be increased?
Can ordinary wallets sell?
Is the sell tax reasonable?
Is the contract verified?
Are there blacklist or pause functions?
Can taxes be changed later?
Are the top holders dangerously concentrated?
Is liquidity deep enough for real exits?
Is the token older than 24 hours?
Has the deployer launched previous scams?
Is volume organic or suspiciously circular?
Is the project relying mainly on influencer hype?
If you cannot answer these, you are not investing.
You are guessing.
The team can remove the pool and leave holders stranded.
The team can inflate supply and dump new tokens.
Buying works, but selling fails.
Users cannot inspect what powers the team has retained.
The team may be able to block sells or freeze transfers.
The sell tax may be raised after buyers enter.
One wallet or a small group can crash the market.
Price can collapse on modest selling.
High urgency plus low history is a dangerous combination.
Wash trading can create the illusion of demand.
No rug scanner can guarantee a token is safe.
A scanner can catch known red flags. It cannot predict every future action by a team. It cannot know whether a custodian, contract owner or insider will behave honestly tomorrow. It cannot detect every undiscovered exploit.
This is why a scanner should be treated as a first filter, not a final verdict.
A red result means walk away.
An amber result means slow down.
A green result means continue due diligence.
Green does not mean safe.
It means no obvious red flags were found in the checks performed.
Assume every new meme token is high risk.
Only consider tokens where liquidity, sellability and mint authority are clearly verified.
Be careful with contract approvals.
Use wallet approval tools regularly and revoke unnecessary permissions after interacting with new contracts.
Avoid unknown DEX launches until you understand how to read contracts, liquidity and holder distribution.
A major exchange listing is not a guarantee, but it is usually safer than pasting a random contract into a DEX.
Do not hold long-term positions in speculative new tokens unless you have verified the contract and understand the tokenomics.
For serious holdings, use cold storage.
Do not promote a new token without checking liquidity, mint authority, sellability, contract permissions and holder concentration.
Your audience may treat your post as trust.
That makes due diligence a responsibility.
Most rug pulls are not invisible.
They are obvious to traders who know where to look.
Unlocked liquidity.
Active mint authority.
Failed sell test.
Unverified contract.
Dangerous owner functions.
Concentrated holders.
Thin liquidity.
High or modifiable taxes.
These are the warning signs.
The DN Rug Risk Scanner does not promise certainty. It gives traders a repeatable process.
That is the real edge.
Before buying a new token, slow down. Check the contract. Verify the liquidity. Test sellability. Inspect the holders. Read the permissions. Treat unknown answers as risk.
If one critical check fails, walk away.
The best rug pull is the one you never enter.
Start with four checks: liquidity locked or burned, mint authority renounced, sellability confirmed and contract verified. Then check holder concentration, liquidity depth, token age and buy or sell tax. If a critical check fails, the safest action is usually to walk away.
The DN Rug Risk Score is a transparent checklist-based model that scores visible red flags. It does not certify safety. It helps users identify whether a token shows low, medium or high rug risk based on their own verification.
Unlocked liquidity means the team may be able to remove the trading pool at any time. This can leave holders with a token they cannot sell into a real market. It is one of the most serious rug-pull red flags.
A honeypot token allows users to buy but prevents them from selling, or applies extreme sell restrictions. Always run a sellability or honeypot check before buying a new token.
If mint authority is active, the team may be able to create new tokens and dump them into the market. This can dilute holders and destroy the price.
No. A verified contract is easier to inspect, but it can still contain dangerous functions. Verification is necessary for due diligence, but it is not proof of safety.
No. No scanner can guarantee safety. A scanner can identify known red flags, but teams can still act maliciously later, or undiscovered bugs can exist.
Usually, yes. A major exchange listing does not guarantee safety, but it usually removes some random-contract risks. Eligible users can compare platforms such as OKX, MEXC, Gate.com and KCEX.
For long-term holdings, self-custody through a hardware wallet such as Ledger or CoolWallet can reduce exchange and platform risk. It does not protect you from buying a bad token in the first place.
If you cannot verify liquidity, sellability, mint authority and contract permissions, do not buy. Unknown should count as risk.
This article is for educational and informational purposes only. It is not financial advice, investment advice, trading advice, legal advice, tax advice or a recommendation to buy, sell or hold any token, crypto asset or financial product. New tokens, meme coins and low-liquidity assets are extremely risky and can result in total loss of capital. The DN Rug Risk Scanner is a checklist model based on user-verified information and does not certify that any token is safe. Always do your own research, use live verification tools, understand smart contract and liquidity risk, never invest money you cannot afford to lose, and consult a qualified professional where necessary. Decentralised News may earn affiliate commissions from selected platforms and services, which helps support independent crypto research and education.