Skip to main content
The Contracts API runs SURCHI’s AI audit engine against any token contract and returns a structured risk report. Each audit checks for common attack vectors and red flags — renounced ownership, active mint and freeze authorities, upgradeability, liquidity lock status, honeypot behaviour, and holder concentration — and synthesises the results into a single risk score alongside a human-readable AI summary. All contract endpoints require the read:contracts scope on your API key.

GET /v1/contracts//audit

Run a full AI audit on a smart contract and retrieve the complete risk report. Audits are cached for 5 minutes; repeated calls within that window return the cached result instantly.

Parameters

Example Request

Example Response


Response Field Reference

Top-Level Audit Fields

Risk Score Bands

checks Object Fields

Each field in the checks object represents an individual safety check. Boolean fields are true when the check passes in favour of safety unless otherwise noted.
A mint_authority: true result means the deployer retains the ability to inflate the token supply without limit. This is a critical risk factor for any token whose value depends on scarcity. Always cross-reference with developer_wallet_pct and liquidity_locked before proceeding.
If the AI audit engine is temporarily unavailable — for example during a model update — the endpoint returns HTTP 503 with error code AUDIT_UNAVAILABLE. You can retry safely after 30 seconds. See the Errors reference for retry guidance.