GoPlus Security

• Name: GoPlus Security
• URL: https://gopluslabs.io/
• Category: Web3 security API / transaction simulation / threat-intelligence infrastructure
• Tags: ethereum-ecosystem solana-ecosystem
• Summary: GoPlus Security is broad wallet-and-app screening middleware. The core product is the verdict layer: token, address, phishing-site, approval, dApp, and transaction-simulation checks that downstream products can turn into warnings, blocks, or softer defaults. Keep the SafeToken and agent-security sidecars in proportion. The note is mainly about upstream policy plumbing.
• What it does:
  • Provides real-time security APIs covering token risk, malicious addresses, NFT risk, token approvals, dApp information, phishing sites, signature decoding, and transaction simulation
  • Supports both EVM and Solana-oriented security surfaces, including Solana token analysis and transaction simulation for Solana and EVM flows
  • Ships official SDKs in multiple languages so wallets, apps, exchanges, and other platforms can wire GoPlus checks directly into their products
  • Extends beyond the core screening API into SafeToken issuance and token-locker tooling, but those are side branches rather than the center of the note
  • Maintains a public GitHub organization with official SDKs and adjacent security tooling, including AI-agent security repos, which shows the company trying to widen from onchain risk APIs into a broader security-control-plane pitch
• Key claims:
  • The official site calls GoPlus “The Leading Web3 and AI Agent Security Solutions” and describes it as a “decentralized security layer for Web3” built to protect transactions
  • The docs say GoPlus is building an “open, permissionless, and user-driven User Security Network for Web3” and describe its APIs as delivering real-time, automated security intelligence
  • The getting-started docs enumerate a broad security product surface including Token Security, Malicious Address, NFT Security, Approval Security, dApp Security Info, Signature Decode, Phishing Site Detection, Solana token security, and both Solana and EVM transaction simulation APIs
  • The SDK docs say GoPlus provides official SDKs in Go, Java, Node.js, Python, and PHP, which is a strong signal that the API layer is meant for direct embedding by external platforms
  • The GitHub organization describes GoPlus as “security infrastructure” for web3 and shows public SDK repos plus newer agent-security tooling such as AgentGuard, suggesting a widening product scope beyond simple token scanning
• Whitepaper: No classic standalone whitepaper or litepaper was found during this pass. The strongest primary materials were GoPlus Security’s official site, docs portal, SDK docs, Node SDK README, and public GitHub organization; see ../whitepapers/goplus-security-primary-sources-2026-04-26.md.
• Sources:
  • https://gopluslabs.io/
  • https://docs.gopluslabs.io/docs/getting-started
  • https://docs.gopluslabs.io/docs/goplus-sdk
  • https://raw.githubusercontent.com/GoPlusSecurity/goplus-sdk-node/main/README.md
  • https://github.com/GoPlusSecurity

Internal linkages

• Best upward comparisons: blockaid and blowfish.

Governance / control risk

• Practical authority sits in risk-label policy, simulation coverage, false-positive handling, partner defaults, and how many downstream wallets or apps inherit GoPlus verdicts without much local review.

• Treat the note as security-policy middleware, not as a neutral data feed.

• Last reviewed: 2026-06-01 UTC