Introduction

What is TaroAi?

TaroAi is an AI-powered risk analysis platform for Solana tokens. It combines on-chain data analysis, smart contract auditing, social sentiment monitoring, and LLM-powered reasoning to produce a single, actionable risk score for any SPL token.

The platform is designed for retail investors, DeFi traders, and crypto communities who want to quickly assess whether a token is a potential rug pull, honeypot, or scam — before they invest.

Instant Scans

Results in under 10 seconds for any Solana token address.

On-Chain Verified

All data is sourced directly from Solana RPC and DexScreener.

AI-Powered

LLM reasoning layer explains every flag in plain English.

Risk Scoring

How the Score Works

Every token scan produces a risk score from 0 to 100. Higher scores indicate greater risk. The score is a weighted average of six independent pillar scores, each evaluated by a combination of deterministic on-chain checks and LLM-powered analysis.

Score Range	Level	Meaning
0 – 39	SAFE	No significant red flags. Proceed with normal caution.
40 – 69	WARNING	Moderate risk factors present. Do additional research.
70 – 100	CRITICAL	Severe risk. High probability of scam or rug pull.

Disclaimer: TaroAi scores are risk indicators, not guarantees. A SAFE score does not mean a token is investment-grade. Always do your own research.

The 6 Pillars

Pillar Breakdown

Each pillar evaluates a distinct risk dimension. The weights reflect how strongly each dimension predicts rug pulls and scams based on historical data from confirmed Solana scam tokens.

Smart Contract Audit

40% weight

TaroAi decompiles and statically analyses the Solana program bytecode for known vulnerability patterns. It checks for hidden mint authorities, freeze authorities left enabled, reentrancy-like patterns in CPI calls, and backdoor instructions that could drain liquidity. This pillar carries the highest weight because a single contract flaw can make all other metrics irrelevant.

Common Flags

Hidden mint authorityFreeze authority enabledUnverified program upgrade authoritySuspicious CPI targets

Team & Social Credibility

15% weight

Anonymous teams are not automatically disqualifying, but TaroAi cross-references on-chain wallet history, GitHub activity, and social media age. Newly created Twitter/X accounts, no GitHub history, and wallets with no prior on-chain activity are all negative signals. Verified KYC or prior successful project history are positive signals.

Common Flags

New social accounts (<30 days)No GitHub activityNo prior on-chain historyUnverified team

Tokenomics Analysis

10% weight

On-chain supply distribution is analysed to detect whale concentration risk. TaroAi checks whether the top 10 holders control more than 50% of supply, whether liquidity is locked (and for how long), and whether the team/dev wallet allocation is disclosed and reasonable.

Common Flags

Top 10 wallets >50% supplyNo liquidity lockDev wallet >20% supplyNo vesting schedule

Liquidity & Market Health

15% weight

Thin liquidity pools make it trivially easy for insiders to manipulate price and execute rug pulls. TaroAi checks pool depth relative to market cap, the number of active liquidity providers, and whether liquidity was added organically over time or dumped in a single transaction.

Common Flags

Pool depth <$10kSingle LP providerLiquidity added in one txRapid pool growth (bot seeding)

Community Sentiment

15% weight

TaroAi analyses recent social signals from Twitter/X, Telegram, and Discord to detect coordinated shill campaigns, bot-driven engagement, and sudden sentiment reversals. High bot activity, copy-paste messages, and engagement spikes that don't correlate with organic growth are all red flags.

Common Flags

Bot-driven engagement >60%Copy-paste shill messagesSudden sentiment reversalCoordinated pump signals

Regulatory & Legal Risk

5% weight

TaroAi checks whether the token or its team has been flagged by regulatory bodies, whether the project makes securities-like promises, and whether the whitepaper contains legally problematic language. This pillar has the lowest weight but can override other scores if a confirmed regulatory action is found.

Common Flags

SEC/FCA flaggedGuaranteed return promisesUnregistered securities languageSanctioned wallet addresses

API Reference

tRPC API

TaroAi uses a tRPC API under /api/trpc. All endpoints require a session cookie for authenticated procedures.

A public REST API with API key authentication is on the roadmap. Join the Discord to be notified when it launches.

GET/api/trpc/scan.analyzeToken

Analyse a Solana token address and return a full risk report.

Parameters

Name	Type	Required	Description
tokenAddress	string	required	Solana token mint address (base58)

Response

{
  "riskScore": 72,
  "riskLevel": "WARNING",
  "tokenName": "EXAMPLE",
  "tokenSymbol": "EXP",
  "pillars": {
    "smartContract": { "score": 65, "flags": ["Hidden mint authority"] },
    "team":          { "score": 80, "flags": [] },
    "tokenomics":    { "score": 70, "flags": ["Dev wallet >20% supply"] },
    "liquidity":     { "score": 75, "flags": [] },
    "community":     { "score": 85, "flags": [] },
    "regulatory":    { "score": 90, "flags": [] }
  },
  "summary": "Moderate risk. Hidden mint authority detected..."
}

GET/api/trpc/watchlist.get

Get the authenticated user's watchlist.

Response

[
  {
    "id": 1,
    "tokenAddress": "7xKX...3mNp",
    "tokenName": "BONK2",
    "lastRiskScore": 91,
    "lastRiskLevel": "CRITICAL",
    "alertThreshold": null,
    "snoozedUntil": null,
    "addedAt": "2026-03-01T12:00:00.000Z"
  }
]

POST/api/trpc/referral.trackClick

Track a referral link click (call when user visits /referral?ref=CODE).

Parameters

Name	Type	Required	Description
code	string	required	8-character referral code

Response

{ "ok": true }

FAQ

Frequently Asked Questions

How is the risk score calculated?

The risk score is a weighted average of six pillar scores (Smart Contract 40%, Team 15%, Tokenomics 10%, Liquidity 15%, Community 15%, Regulatory 5%). Each pillar is scored 0–100 by a combination of on-chain data analysis and LLM-powered reasoning. A score of 0 is perfectly safe; 100 is maximally dangerous.

What does SAFE / WARNING / CRITICAL mean?

SAFE (0–39): No significant red flags detected. WARNING (40–69): One or more moderate risk factors present — proceed with caution and do your own research. CRITICAL (70–100): Severe risk factors detected. High probability of rug pull, honeypot, or scam.

How often is the data updated?

On-chain data (contract, liquidity, tokenomics) is fetched live at scan time. Social sentiment is cached for up to 30 minutes. Watchlist tokens are re-checked every time you trigger a manual re-scan or when the background cron detects a significant score change.

Is TaroAi a financial advisor?

No. TaroAi is a risk analysis tool, not a financial advisor. Nothing on this platform constitutes financial advice. Always do your own research (DYOR) before investing in any token.

How do I report a false positive or false negative?

Use the 'Report' button on any scan result page to submit a scam report or dispute a result. Our team reviews all reports and uses them to improve the model.

What chains does TaroAi support?

TaroAi currently supports Solana (SPL tokens). Support for Ethereum ERC-20, Base, and BNB Chain tokens is on the roadmap.

Still have questions?

Join our Discord community or open a GitHub issue.

Discord GitHub