---
name: augur
version: 1.0.0
description: Deterministic Base contract risk screening for agents. Analyze a contract, get a 0-100 score with findings, and pay per call with x402.
homepage: https://augurrisk.com
license: MIT
tags: [security, smart-contracts, base, bytecode-analysis, x402, agents]
payment:
  protocol: x402
  network: eip155:8453
  asset: USDC
  amount: 0.10
  endpoint: https://augurrisk.com/analyze
---

# Augur

Use Augur when you need a fast deterministic first-pass contract screen on a Base mainnet contract. Screen Base contracts before your agent buys, routes funds, approves, or interacts.

## Fastest Path

1. Read this file or `https://augurrisk.com/openapi.json`
2. Call `GET https://augurrisk.com/analyze?address={base_contract_address}`
3. If you receive `402`, let your x402 client pay `$0.10` USDC on Base and retry with `PAYMENT-SIGNATURE`
4. Read `score`, `level`, `findings`, `category_scores`, and optional `implementation`

## Endpoint

```http
GET https://augurrisk.com/analyze?address=0x4200000000000000000000000000000000000006
POST https://augurrisk.com/analyze
Content-Type: application/json

{"address":"0x4200000000000000000000000000000000000006"}
```

## Output Shape

```json
{
  "address": "0x4200000000000000000000000000000000000006",
  "score": 0,
  "level": "safe",
  "bytecode_size": 4632,
  "findings": [],
  "category_scores": {}
}
```

Risk levels:

- `safe` (0-15): no major bytecode-level risk signals detected in this scan; not a guarantee
- `low` (16-35): limited concerns detected
- `medium` (36-55): notable risks detected
- `high` (56-75): significant risks detected
- `critical` (76-100): severe risks detected

## What Augur Checks

- proxy behavior
- reentrancy risk
- selfdestruct capability
- honeypot-style transfer restrictions
- hidden mint capability
- fee manipulation
- delegatecall usage
- deployer reputation

One `/analyze` call checks all 8 categories below.

Proxy contracts can include a nested `implementation` analysis so downstream policy can score both proxy shell and underlying logic consistently.

## Failure Cases

- `422`: missing, malformed, or non-contract Base address
- `402`: payment required
- `502`: upstream Base RPC failure

## Machine Docs

- [OpenAPI Spec](https://augurrisk.com/openapi.json)
- [Summary Doc](https://augurrisk.com/llms.txt)
- [Full Doc](https://augurrisk.com/llms-full.txt)
- [A2A Agent Card](https://augurrisk.com/.well-known/agent-card.json)
- [x402 Discovery](https://augurrisk.com/.well-known/x402)
- [API Catalog](https://augurrisk.com/.well-known/api-catalog)
- [MCP Setup](https://augurrisk.com/mcp)
- [How Payment Works](https://augurrisk.com/how-payment-works)