VerdikVerdik
Launching on Solana mainnet

Verdik audits the developer and the code behind every Solana token — before you ape. Real GitHub forensics, AST plagiarism scan, and 24 security rules. Free. Open. Transparent.

Free & open sourceNo API keys requiredBuilt for Solana
verdik-engine.live
solana mainnet
SCANNING
412
Scans today
3,091
Rugs caught
14,237
Total scans
29
DB signatures +24 rules
Pipeline
Resolving profile
Fetching repositories
Hashing AST signatures
Security rule sweep
Synthesizing verdict
Live feed
0x_anon_dev
24crit
moon-launch-v3
38high
solana-labs
92safe
presale-king
19crit
anza-xyz
88safe
v1.0.0healthy · 99.97%
Scroll to explore

29

rug-pull signatures in database

24

security rules across 4 languages

<12s

average end-to-end scan time

100%

free · no API keys · open source

What Verdik Catches

Two engines. One verdict. Zero guesswork.

Verdik runs every Solana project through forensic checks on the developer behind it and the code they shipped. The output is evidence — not vibes.

Developer Trust Score (DTS)

Real GitHub forensics. Account age, commit burst detection, follower-graph signals, and bio risk analysis — every penalty cited with raw evidence.

AST plagiarism scanner

Function-level fingerprinting with 5-gram Jaccard similarity. Matches your code against 29 hand-curated rug-pull templates. Catches copy-paste rugs even when renamed.

24 security rules

Solidity, Rust/Anchor, JavaScript, TypeScript. tx.origin, delegatecall, selfdestruct, MaxUint approvals, wallet drain patterns, hidden seed-phrase forms.

Transparent reasoning

Every score is broken down factor by factor. Click any penalty for the underlying evidence. No black box, no marketing fluff — just verifiable signals.

Live SSE streaming

Watch the engine work in real time. Each fetch, hash, and comparison logged in a terminal-style pipeline. Auditable from input to verdict.

Code Diff side-by-side

See exactly which lines of your function structurally match the known scam. Token-level normalization makes renames meaningless to the matcher.

Category Risk Heatmap

Risk concentration mapped across 7 categories × 4 severities at a glance. Spot whether a project is fee-rug, mint-rug, or freeze-rug shaped.

Free, open, no API keys

No subscriptions, no paid SaaS dependencies, no telemetry. Optional GitHub PAT only raises rate limits — the engine itself is fully transparent.

Developer Trust Score (DTS)

Real GitHub forensics. Account age, commit burst detection, follower-graph signals, and bio risk analysis — every penalty cited with raw evidence.

AST plagiarism scanner

Function-level fingerprinting with 5-gram Jaccard similarity. Matches your code against 29 hand-curated rug-pull templates. Catches copy-paste rugs even when renamed.

24 security rules

Solidity, Rust/Anchor, JavaScript, TypeScript. tx.origin, delegatecall, selfdestruct, MaxUint approvals, wallet drain patterns, hidden seed-phrase forms.

Transparent reasoning

Every score is broken down factor by factor. Click any penalty for the underlying evidence. No black box, no marketing fluff — just verifiable signals.

Live SSE streaming

Watch the engine work in real time. Each fetch, hash, and comparison logged in a terminal-style pipeline. Auditable from input to verdict.

Code Diff side-by-side

See exactly which lines of your function structurally match the known scam. Token-level normalization makes renames meaningless to the matcher.

Category Risk Heatmap

Risk concentration mapped across 7 categories × 4 severities at a glance. Spot whether a project is fee-rug, mint-rug, or freeze-rug shaped.

Free, open, no API keys

No subscriptions, no paid SaaS dependencies, no telemetry. Optional GitHub PAT only raises rate limits — the engine itself is fully transparent.

One Command. Full Verdict.

From GitHub handle to risk verdict in seconds

No setup. No accounts. No paid APIs. Paste a GitHub username or repo and watch the engine work live — every fetch, hash, and match streamed straight to your screen.

  • Single command, full forensic trail
  • Live SSE pipeline — every step auditable
  • Cited evidence behind every penalty
  • Verdict in under 12 seconds
Terminal

Built for Solana

Four ways to scan. One verdict you can verify.

Solidity, Rust, Anchor, TypeScript, JavaScript — Verdik handles the whole Solana stack. Scan a developer, scan a repo, paste a single function, or compare against the rug template database.

terminal
Documentation

Every weight. Every rule. Documented.

Verdik is transparent by design. Every signal we measure and every penalty we apply is explained, cited, and open to scrutiny.

Getting Started

Run your first developer scan in under a minute. No accounts, no installs.

DTS Forensics

How Developer Trust Score combines GitHub signals into a single verdict.

AST Scanner

Function-level fingerprinting, normalization, and the 29-signature database.

Security Rules

All 24 pattern rules across Solidity, Rust, Anchor, JavaScript, and TypeScript.

API Reference

Streaming SSE endpoints for programmatic access from your own tooling.

Self-Hosting

Run Verdik on your own infrastructure — no telemetry, no external dependencies.

View full documentation
Roadmap

From scanner to on-chain trust layer

Verdik starts as a forensic scanner. The endgame is a self-sustaining trust layer for Solana — community-curated, on-chain attested, skin-in-the-game reputation.

Phase 1 · Shipped

DTS Forensics + AST Scanner (MVP)

SHIPPED
  • Developer Trust Score with transparent reasoning engine
  • AST plagiarism scanner · 29 rug signatures · 24 security rules
  • Live SSE streaming pipeline · code diff viewer · category heatmap
  • Three input modes: GitHub repo, direct paste, file upload
Phase 2 · In progress

Verdik on Solana mainnet

IN PROGRESS
  • $VERDIK utility token launch on Solana
  • Scan-result attestations stored on-chain (Verdik-PDA)
  • Embed badges + shareable permalinks for verified projects
  • Public scan archive (anonymized, opt-in)
Phase 3 · Next

Pre-launch verification & code intelligence

NEXT
  • Pre-launch Verified Badge for legitimate Solana projects
  • Function call graph + self-similarity detection
  • AI explanations per match (local Ollama, zero API cost)
  • Cyclomatic complexity metrics + per-function quality profile
Phase 4 · Future

Community-staked attestations

FUTURE
  • Stake $VERDIK to vouch for a project — skin in the game
  • Rugged projects burn the staked $VERDIK, redistribute to early flaggers
  • DAO-curated signature database with on-chain governance
  • Cross-chain reputation lookup (Ethereum, Base, Bitcoin L2)

Roadmap commitments are public and verifiable. All MVP code is open-source from day one.

For Solana Projects

Prove you're legit before anyone asks

Verdik isn't only for investors. Serious teams use it to demonstrate clean code, transparent developer history, and continuous security posture before token launch.

Built for the Solana ecosystem

Token Founders
DAO Treasuries
Solana Launchpads
DeFi Auditors
Wallet Apps
DEXs

Pre-launch Verified Badge

Get audited before launch and earn a public Verdik badge for your README and landing page.

Continuous monitoring

Automated re-scans on every push so the verdict stays accurate as your codebase evolves.

Team & contributor scoring

Full DTS profile for every contributor — flag suspicious activity in your own org before it ships.

Public scan permalinks

Shareable on-chain attested scan results. Embed proof in your launch announcement.

Self-hostable

Run Verdik entirely on your own infrastructure. No telemetry, no third-party data calls.

Risk dashboards

Aggregate scan history across your portfolio. Track risk trends across teams and products.

CI/CD integration

Block merges that introduce rug-pattern code. Fail builds when security rules trigger.

Private signature database

Add your own internal patterns to the signature database. Catch issues unique to your stack.

Launching a token on Solana?

Get the Pre-launch Verified Badge. Show investors you took security seriously from day one.

Don't ape. Verify first.

Run a Verdik scan in under 12 seconds. Free, open, no sign-up. Catch the rug before it catches you.