POST /v1/base/token-report$0.010Composite rug/honeypot verdict — the flagship "can I ape in?" check.
{ "token": "0x…" }{ verdict: { rating: avoid|caution|ok, score, reasons[] }, safety, recentPulls[], recentWhaleSwaps[] }Every endpoint is one POST that returns JSON, priced per call in USDC — no account, no API key. Pick a stall, send the body, pay the 402. Below: the full reference, plus copy-paste quickstarts for the CLI and every SDK.
Base URL https://true402.dev/api. There's no account or API key — each paid call settles with an x402 payment (USDC on Base, EIP-3009). Free GET endpoints (/v1/models, /v1/services, /v1/radar, /health, /openapi.json) need nothing. The full flow:
# 1) Call any paid endpoint with NO payment — you get the price back:
curl -i -X POST https://true402.dev/api/v1/base/token-report \
-H 'content-type: application/json' -d '{"token":"0x…"}'
# → HTTP 402 payment-required: { amount, asset: USDC, network: eip155:8453, payTo: 0x… }
# 2) Sign that USDC authorization (EIP-3009) and retry with the X-Payment header → 200 + JSON.
# Most agents never hand-roll this — use the CLI or an SDK below. # Zero-install terminal check — free to try (a few/day, no wallet):
npx @true402.dev/rugcheck 0x4ed4E862860beD51a9570b96d89aF5E1B0Efefed # LangChain — adds true402 tools to an agent (pays per call from a wallet):
npm i @true402.dev/langchain
# import { createTrue402Tools } from '@true402.dev/langchain';
# const tools = createTrue402Tools({ payerPrivateKey: process.env.PAYER_PRIVATE_KEY });
# Vercel AI SDK:
npm i @true402.dev/ai-sdk
# import { true402Tools } from '@true402.dev/ai-sdk';
# MCP (Claude Code / Desktop / Cursor) — every stall as a tool, auto-discovered:
claude mcp add true402 -- npx -y @true402.dev/mcp-server The SDKs handle the 402 → sign → retry loop for you, with a built-in per-call spend cap. See the agent integration guide.
POST /v1/base/token-report$0.010Composite rug/honeypot verdict — the flagship "can I ape in?" check.
{ "token": "0x…" }{ verdict: { rating: avoid|caution|ok, score, reasons[] }, safety, recentPulls[], recentWhaleSwaps[] }POST /v1/token-safety$0.005Raw safety report: ERC-20 conformance, ownership, mint, liquidity, buy/sell honeypot simulation.
{ "token": "0x…" }{ score, flags[], liquidity, honeypot }POST /v1/base/address-safety$0.005Structural profile of any EOA or contract before you send/approve/call it.
{ "address": "0x…" }{ isContract, isErc20, ownership, isProxy, mintable, balances, flags[] }POST /v1/base/deployer-check$0.008Deployer reputation — wallet age + prior-token history to catch serial ruggers.
{ "token": "0x…" }{ risk, flags[], deployer, priorTokens[] }POST /v1/base/new-pairs$0.003Newly-created Base DEX pairs (Uniswap V3 + Aerodrome) — fresh launches.
{ "since?": n, "limit?": n, "dex?": "…", "withToken?": bool }{ pairs: [{ token, quote, pool, dex, block, ageSeconds }] }POST /v1/base/liquidity-pulls$0.003Liquidity-removal (rug) alerts on tracked pools — an early rug warning.
{ "since?": n, "limit?": n, "minQuote?": n }{ events: [{ pool, token, quoteRemoved, block }] }POST /v1/base/whale-swaps$0.005Large ($-value) DEX swaps for whale-following / copy-trading.
{ "min?": n, "direction?": "buy|sell", "since?": n, "limit?": n }{ swaps: [{ token, usdValue, direction, pool, block }] }POST /v1/seo-audit$0.015SEO + GEO (generative-engine) audit of a web page → structured JSON report.
{ "url": "https://…", "mode?": "…" }{ report: { seo, geo, issues[], score } }POST /v1/web-extract$0.005Fetch a URL → clean text + markdown + links.
{ "url": "https://…" }{ title, text, markdown, links[] }POST /v1/link-preview$0.003Open Graph card for a URL.
{ "url": "https://…" }{ title, description, image, siteName }POST /v1/robots-check$0.003A site's AI-crawler policy + sitemaps.
{ "url": "https://…" }{ aiBots: {...}, sitemaps[] }POST /v1/headers-check$0.003HTTP security-header analysis for a URL.
{ "url": "https://…" }{ headers, grade, missing[] }POST /v1/chat/completionsper-tokenOpenAI-compatible chat across 6 providers / 20+ models (3% markup).
{ "model": "…", "messages": [...] }OpenAI chat completion objectMachine-readable: /api/openapi.json (OpenAPI 3.1) and the live catalog.
You don't — there is no account, API key, or token. Each paid call is settled with an x402 payment: the endpoint returns HTTP 402 with the price, you sign a USDC (EIP-3009) authorization with your wallet, and retry with the X-Payment header. The wallet is the identity. The free GET endpoints (models, services, radar, health) need nothing.
Each endpoint is a fixed price per call in USDC, listed in the reference above (roughly $0.003–0.015; chat is per-token with a 3% markup). The safety stalls (token-report, token-safety, address-safety) also have a free trial — a few calls per IP per day with no wallet.
USDC on Base (network eip155:8453). Payment is a gasless EIP-3009 signed authorization, so the payer needs only USDC, not native gas. A Lightning (BTC) rail is also available on some deployments.
Yes — the machine-readable OpenAPI 3.1 spec is served at /api/openapi.json, and a discovery manifest at /api/.well-known/x402-manifest.json. Agents can auto-generate a client from either.