On-chain security analysis — is it a scam or legit?
The Injective (INJ) token on Ethereum presents a mixed security profile for investors. On the positive side, the contract is verified, ownership has been renounced, and no mint function exists, mitigating several common scam vectors such as arbitrary token creation or a single entity controlling future supply. This foundational transparency and immutability contribute positively to its safety signals. However, significant centralization is observed, with the top 10 holders controlling 91.9% of the total supply. Furthermore, the liquidity for INJ is not locked, introducing potential risks related to sudden withdrawals. With a 24-hour volume of $55,007 and total liquidity of $306,319, its medium risk score of 36/100 reflects these inherent trade-offs between initial structural integrity and ongoing operational vulnerabilities.
The most critical risk factors for Injective (INJ) stem from its concentrated supply and unlocked liquidity. A staggering 91.9% of the total supply is held by the top 10 wallets, which raises concerns about potential market manipulation, significant price volatility from large sales, or governance implications if applicable. The absence of locked liquidity means that the existing $306,319 could theoretically be withdrawn by liquidity providers at any time, posing a 'rug pull' risk for investors. Conversely, the verified contract, renounced ownership, and immutable supply (no mint function) are crucial safety signals, reducing common developer-controlled attack vectors and offering a degree of foundational trust.
Based on the provided data, Injective's contract is verified, ownership is renounced, and there's no mint function, which reduces common scam characteristics. However, the high concentration of supply among the top 10 holders (91.9%) and unlocked liquidity present significant risks. While it avoids typical developer-controlled scam mechanisms, these operational factors warrant careful due diligence and consideration of its medium risk score of 36/100.
Injective (INJ) carries a medium risk score of 36/100. Key risk factors include the high concentration of tokens, with the top 10 holders controlling 91.9% of the supply, and the fact that its liquidity is not locked. While contract verification and renounced ownership offer some security, these significant centralization and liquidity risks suggest that investors should proceed with caution and thorough personal research.
The provided data indicates that the Injective (INJ) contract is 'verified,' meaning its code is publicly available and matches the deployed bytecode on the blockchain. This enhances transparency but is distinct from a security audit. An audit involves a professional review by security experts to identify vulnerabilities. The data does not explicitly state that a formal security audit has been conducted, only that the contract code is transparently published.
Our AI-powered scanner gives you a deeper, real-time smart contract analysis — free, no signup required.
Get Detailed Audit