mcp-tools-reference.md

GoPlus MCP Tools Reference

Complete reference for all GoPlus MCP tools available to skills.

Tool Overview

Tool	Description	Primary Use Case
goplus_token_security	EVM token analysis	Honeypot detection, tax analysis
goplus_solana_token_security	Solana token analysis	SPL token security
goplus_sui_token_security	Sui token analysis	Sui token security
goplus_malicious_address	Address threat detection	Scammer/hacker identification
goplus_approval_security	Approval risk analysis	Wallet approval audit
goplus_phishing_site	Phishing detection	URL safety verification
goplus_nft_security	NFT contract analysis	NFT project security

---

1. goplus_token_security

Analyzes ERC20/BEP20 tokens on EVM-compatible chains for security risks.

Parameters

Parameter	Type	Required	Description
chain_id	string	Yes	Blockchain identifier
contract_addresses	string	Yes	Token contract address(es), comma-separated for multiple

Supported Chains

Chain	ID	Chain	ID
Ethereum	1	Arbitrum	42161
BSC	56	Optimism	10
Polygon	137	Base	8453
Avalanche	43114	Fantom	250
Cronos	25	Gnosis	100
zkSync Era	324	Linea	59144
Scroll	534352	Mantle	5000
opBNB	204	Manta	169

Response Fields

{
  "security_score": 85,
  "risk_level": "Low",
  "token_info": {
    "token_name": "Tether USD",
    "token_symbol": "USDT",
    "total_supply": "1000000000",
    "holder_count": "5000000"
  },
  "contract_security": {
    "is_open_source": true,
    "is_proxy": false,
    "is_mintable": true,
    "can_take_back_ownership": false,
    "owner_change_balance": false,
    "hidden_owner": false,
    "selfdestruct": false,
    "external_call": false
  },
  "trading_security": {
    "buy_tax": "0",
    "sell_tax": "0",
    "slippage_modifiable": false,
    "is_honeypot": false,
    "transfer_pausable": true,
    "is_blacklisted": false,
    "is_whitelisted": false,
    "is_anti_whale": false,
    "anti_whale_modifiable": false,
    "trading_cooldown": false,
    "personal_slippage_modifiable": false
  },
  "risks": {
    "high": [],
    "medium": ["transfer_pausable"],
    "low": []
  }
}

Risk Scoring

Score Range	Risk Level	Description
85-100	Very Low	Minimal risks detected
70-84	Low	Minor concerns
50-69	Medium	Notable risks present
30-49	High	Significant risks
0-29	Extremely High	Critical risks / Likely scam

Example Usage

Tool: goplus_token_security
Parameters:
  chain_id: "1"
  contract_addresses: "0xdAC17F958D2ee523a2206206994597C13D831ec7"

---

2. goplus_solana_token_security

Analyzes SPL tokens on Solana blockchain.

Parameters

Parameter	Type	Required	Description
contract_addresses	string	Yes	Token mint address

Response Fields

Similar structure to EVM tokens with Solana-specific fields:

{
  "security_score": 90,
  "token_info": {
    "token_name": "Wrapped SOL",
    "token_symbol": "SOL",
    "supply": "1000000000",
    "decimals": 9
  },
  "metadata": {
    "metaplex_update_authority_address": "...",
    "mutable_metadata": false
  },
  "risks": {
    "high": [],
    "medium": [],
    "low": []
  }
}

Example Usage

Tool: goplus_solana_token_security
Parameters:
  contract_addresses: "So11111111111111111111111111111111111111112"

---

3. goplus_sui_token_security

Analyzes tokens on Sui blockchain.

Parameters

Parameter	Type	Required	Description
contract_addresses	string	Yes	Sui token object ID

Example Usage

Tool: goplus_sui_token_security
Parameters:
  contract_addresses: "0x2::sui::SUI"

---

4. goplus_malicious_address

Checks addresses against GoPlus threat intelligence database.

Parameters

Parameter	Type	Required	Description
chain_id	string	Yes	Blockchain identifier
addresses	string	Yes	Address(es) to check, comma-separated

Response Fields

{
  "security_score": 30,
  "risk_level": "High",
  "address_info": {
    "contract": false,
    "is_contract": false
  },
  "risk_flags": {
    "cybercrime": true,
    "money_laundering": false,
    "phishing_activities": true,
    "stealing_attack": false,
    "blacklist_doubt": true,
    "honeypot_related_address": false,
    "fake_kyc": false,
    "blackmail_activities": false,
    "sanctioned": false,
    "malicious_mining_activities": false,
    "mixer": false,
    "darkweb_transactions": false,
    "reinit": false,
    "number_of_malicious_contracts_created": 5
  },
  "risks": {
    "high": ["cybercrime", "phishing_activities"],
    "medium": ["blacklist_doubt"],
    "low": []
  },
  "data_source": "GoPlus Security"
}

Risk Flag Definitions

Flag	Severity	Description
cybercrime	Critical	Confirmed involvement in cyber attacks
money_laundering	Critical	Money laundering activities
phishing_activities	Critical	Phishing campaign operator
stealing_attack	Critical	Theft/exploit perpetrator
sanctioned	Critical	OFAC/regulatory sanctions
blackmail_activities	Critical	Ransomware/extortion
darkweb_transactions	High	Darknet market transactions
mixer	High	Mixer service interaction
fake_kyc	Medium	Fake KYC service
blacklist_doubt	Medium	Suspected malicious
honeypot_related_address	Medium	Associated with honeypots
malicious_mining_activities	Medium	Cryptojacking

Example Usage

Tool: goplus_malicious_address
Parameters:
  chain_id: "1"
  addresses: "0x123...,0x456..."

---

5. goplus_approval_security

Audits token approvals for a wallet address.

Parameters

Parameter	Type	Required	Description
chain_id	string	Yes	Blockchain identifier
addresses	string	Yes	Wallet address to audit

Response Fields

{
  "security_score": 65,
  "total_approvals": 15,
  "risky_approvals": 3,
  "approval_list": [
    {
      "token_name": "USDT",
      "token_address": "0x...",
      "token_symbol": "USDT",
      "spender_address": "0x...",
      "spender_name": "Unknown",
      "allowance": "unlimited",
      "is_open_source": false,
      "is_contract": true,
      "risk_level": "high"
    }
  ],
  "risks": {
    "high": [
      {
        "token": "USDT",
        "spender": "0x...",
        "reason": "unverified_contract"
      }
    ],
    "medium": [],
    "low": []
  }
}

Risk Categories

Risk Level	Criteria
High	Unverified contract, known scam address
Medium	Unlimited allowance, new contract
Low	Verified contract, reasonable allowance

Example Usage

Tool: goplus_approval_security
Parameters:
  chain_id: "56"
  addresses: "0xYourWalletAddress..."

---

6. goplus_phishing_site

Checks URLs against GoPlus phishing database.

Parameters

Parameter	Type	Required	Description
url	string	Yes	Full URL to check

Response Fields

{
  "is_phishing": true,
  "risk_level": "High",
  "phishing_site": 1,
  "website_contract_security": {
    "has_issues": true,
    "issues": ["malicious_contract_detected"]
  },
  "warnings": [
    "This website has been identified as a phishing site",
    "DO NOT connect your wallet to this website"
  ],
  "similar_legitimate_site": "uniswap.org"
}

Example Usage

Tool: goplus_phishing_site
Parameters:
  url: "https://suspicious-uniswap-claim.com"

---

7. goplus_nft_security

Analyzes NFT contract security.

Parameters

Parameter	Type	Required	Description
chain_id	string	Yes	Blockchain identifier
contract_addresses	string	Yes	NFT contract address

Response Fields

{
  "security_score": 75,
  "nft_info": {
    "nft_name": "Bored Ape Yacht Club",
    "nft_symbol": "BAYC",
    "total_supply": "10000",
    "is_verified": true
  },
  "contract_security": {
    "is_open_source": true,
    "is_proxy": false,
    "privileged_burn": true,
    "privileged_minting": false,
    "transfer_without_approval": false
  },
  "risks": {
    "high": [],
    "medium": ["privileged_burn"],
    "low": []
  }
}

Example Usage

Tool: goplus_nft_security
Parameters:
  chain_id: "1"
  contract_addresses: "0xBC4CA0EdA7647A8aB7C2061c2E118A18a936f13D"

---

Error Handling

All tools return errors in this format:

{
  "error": true,
  "message": "Description of error",
  "code": "ERROR_CODE",
  "timestamp": "2024-01-01T00:00:00Z"
}

Common Error Codes

Code	Description	Resolution
INVALID_ADDRESS	Malformed address	Verify address format
INVALID_CHAIN_ID	Unsupported chain	Check supported chains
RATE_LIMITED	Too many requests	Wait and retry
AUTH_FAILED	Invalid API credentials	Check API key/secret
NETWORK_ERROR	API unreachable	Check network connection