Infinite Mint

🖨️ INFINITE MINT ( Unlimited Token Generation / Mint-and-Dump )

📌 Definition

Infinite Mint is a backdoor in a smart contract that allows the contract owner (admin) to mint an unlimited number of new tokens without any restriction. Using this method, after users have bought tokens on the market, the admin can secretly or openly mint billions of new tokens and sell them, collapsing the project.

This technique is often combined with a rug pull and is also known as mint-and-dump.

🔧 How It Works

💣 Three-Stage Attack Scenario:

1. Attracting Investors The project gains trust through social media, influencers, and DEX liquidity. Investors buy the token.

2. Token Minting The admin uses the mint() function to generate unlimited new tokens (e.g., 100 billion tokens).

3. Dump The newly minted tokens are sold on the market. The price crashes and liquidity is drained.

🧾Smart Contract Mechanisms Involved

Contract Function / Mechanism	Description
function mint(address to, uint256 amount)	Usually works with owner privileges only.
onlyOwner or hasRole(MINTER_ROLE) checks	Allows the admin to mint tokens at any time.
No limit on totalSupply	The total supply can grow infinitely if not capped.
No burn() function	No ability to reduce supply leads to imbalance in the system.

🛡️ Ways to Protect Yourself

Protection Method	Description
Remove mint privileges (Renounce Minter)	Token minting should be disabled or limited by the smart contract itself.
Review audit reports	Who controls the mint() function? Are there any limitations?
Set a maximum total supply	totalSupply must be defined and enforced in the code.
Renounce ownership	Admin should leave the contract; ownership must be set to zero.
Verify contract code on Etherscan	The code should be public and visible for everyone to inspect.

📋 Infinite Mint Red Flags – Quick Checklist

• Does the contract include a mint() function? • Who can call it? (onlyOwner, MINTER_ROLE?) • Is totalSupply capped? • Is there a burn() function? • Is the contract code verified on Etherscan?