Rug Pull Checker Endpoint

Example code for the /rug-pull/check method. Сomplete guide on how to use /rug-pull/check in GetBlock Address Audit documentation.

This method checks a smart contract for rug pull indicators. Proxied to ChainAware.

Body Parameters

Parameter

Type

Required

Description

network

string

Yes

The blockchain network to verify(ETH, BNB,POLY, TRON or BASE)

contract_address

string

Yes

the contract address

Request Example

curl --location --request POST 'https://services.getblock.io/v1/rug-pull/check' \
-- header 'Authorization: Bearer YOUR_API_KEY',
--header 'Content-Type: application/json' \
--data-raw ' {  "network": "ETH", "contract_address": "0xdac17f958d2ee523a2206206994597c13d831ec7"}'

import axios from "axios";

const data = 
  {  "network": "ETH", "contract_address": "0xdac17f958d2ee523a2206206994597c13d831ec7"};

const config = {
  method: "post",
  url: "https://services.getblock.io/v1/rug-pull/check",
  headers: {
    Authorization: "Bearer YOUR_API_KEY",
    "Content-Type": "application/json",
  },
  data: data,
};

axios(config)
  .then((response) => console.log(JSON.stringify(response.data, null, 2)))
  .catch((error) => console.log(error));

import requests
import json

url = "https://services.getblock.io/v1/rug-pull/check"

payload = json.dumps({  "network": "ETH", "contract_address": "0xdac17f958d2ee523a2206206994597c13d831ec7"})

headers = {
      "Authorization": "Bearer YOUR_API_KEY",
  "Content-Type": "application/json",
}

response = requests.post(url, headers=headers, data=payload)
print(response.text)

use reqwest::Client;
use serde_json::json;

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let client = Client::new();

    let payload = json!({  "network": "ETH", "contract_address": "0xdac17f958d2ee523a2206206994597c13d831ec7"});

    let response = client
        .post("https://services.getblock.io/v1/rug-pull/check")
        .header("Content-Type", "application/json")
        .header("Authorization: "Bearer YOUR_API_KEY")
        .json(&payload)
        .send()
        .await?;

    let result: serde_json::Value = response.json().await?;
    println!("{:#?}", result);

    Ok(())
}

Response Example

{
    "data": {
        "message": "Success",
        "contractAddress": "0xdac17f958d2ee523a2206206994597c13d831ec7",
        "pairAddress": null,
        "contractCreatorAddress": "0x36928500bc1dcd7af6a2b4008875cc336b927d57",
        "risk_score": 0,
        "risk_status": null,
        "risk_indicators": {},
        "status": "Not Fraud",
        "probabilityFraud": "0.0028322712",
        "chain": "ETH",
        "lastChecked": "2026-05-14T14:23:18.000Z",
        "contractCreationTime": "2017-11-28T00:41:21.000Z",
        "forensic_details": {
            "owner": {
                "owner_address": "0xc6cde7c39eb2f0f0095f41570af89efc2c1ea828",
                "owner_name": "owner",
                "owner_type": "contract"
            },
            "privilege_withdraw": 0,
            "withdraw_missing": 0,
            "is_open_source": 1,
            "blacklist": 1,
            "contract_name": "TetherToken",
            "selfdestruct": 0,
            "is_proxy": 0,
            "approval_abuse": 0
        },
        "checked_times": 1,
        "createdAt": "2025-09-04T04:55:17.000Z",
        "updatedAt": "2026-05-14T14:23:20.000Z"
    }
}

Response Parameters

Field Path

Type

Example

Description

status

string

"Fraud"

Model verdict. Possible values: "Fraud", "Not Fraud", "Investable", "Not Investable", "Safe".

probabilityFraud

number

0.5488

Rug pull probability score ranging from 0.0 to 1.0.

contractCreationTime

string (ISO 8601)

"2021-11-10T12:00:00.000Z"

Exact timestamp when the smart contract was deployed.

lastChecked

string (ISO 8601)

"2026-03-25T18:42:00.000Z"

Timestamp of the most recent security and fraud analysis.

chain

string

"ETH"

The network/blockchain name (e.g., "ETH").

forensic_details

object

See sub-fields below

Deep analysis of the contract's security properties. Core flags are binary: 0 (clean) or 1 (flagged).

↳ .contract_name

string

"PFToken"

The registered name of the smart contract.

↳ .is_open_source

number (0/1)

1

Indicates if the source code is verified on the network explorer.

↳ .is_proxy

number (0/1)

0

Indicates if the contract uses a proxy pattern (allowing the underlying logic to be replaced).

↳ .selfdestruct

number (0/1)

0

Indicates if the contract contains a selfdestruct function capability.

↳ .privilege_withdraw

number (0/1)

0

Indicates if the owner has excessive privileges to arbitrarily withdraw user assets.

↳ .withdraw_missing

number (0/1)

0

Indicates if critical withdrawal mechanisms are missing, preventing users from recovering funds.

↳ .blacklist

number (0/1)

0

Indicates if the contract owner has the power to blacklist specific wallet addresses.

↳ .approval_abuse

number (0/1)

0

Indicates if the owner can potentially abuse token allowances/approvals given by users.

↳ `.owner**

object

See sub-fields below

Details regarding the administrative ownership of the smart contract.

↳ .owner_type

string

"contract"

The type of owner account. Possible values: "contract" (Multi-sig/DAO/Other contract) or "eoa" (Externally Owned Account/Regular wallet).

↳ .owner_address

string (nullable)

null

The public address of the owner. Returns null if the contract ownership has been renounced.

Error Handling

Status

Description

400

Invalid network or missing fields

401

Missing or invalid auth

402

Insufficient balance

502

Provider error

PreviousWallet Risk Endpoint NextYellowstone gRPC API

Last updated 13 days ago

Was this helpful?