What Are Token Approvals? How to Check and Revoke Dangerous Permissions

The Security Risk You Create With Every DeFi Interaction

Every time you interact with a DeFi protocol on Solana — swapping tokens, providing liquidity, participating in a launch — you may be granting that protocol permissions to interact with your wallet's token accounts. Some permissions are narrow and one-time; others grant ongoing access to specific token balances or, in more dangerous cases, sweeping access to everything your wallet holds.

The danger: malicious protocols can request excessive permissions disguised as routine interactions, then use those permissions at a later time to drain your wallet — days or weeks after the original interaction, when you've forgotten you ever granted them. Even legitimate protocols you no longer use retain their permissions indefinitely unless you explicitly revoke them.

How Token Approvals Work on Solana

On Solana, the token approval mechanism works through delegate authority — you can set a smart contract or wallet address as a "delegate" for a token account, granting it the ability to transfer tokens out of that account up to a specified amount. This is the mechanism that lets DEXs execute swaps on your behalf, and it's also what wallet drainers exploit when they obtain excessive delegate permissions.

There are two types of permissions to be aware of:

• Token account delegate: Grants a specific address permission to transfer up to N tokens from a specific token account. Standard in legitimate DeFi usage.
• SPL Token "closeAuthority" and "freezeAuthority": More advanced permissions related to Token-2022 features. Less commonly seen in normal usage, but worth understanding if you interact with Token-2022 standard tokens.

How to Audit Your Wallet's Active Permissions

Several tools allow you to view and revoke active token permissions on Solana:

Revoke.cash (revoke.cash): The most user-friendly tool. Connect your Solana wallet, and it displays all active token delegates and approvals with the option to revoke each with a single transaction. Free to use. Legitimate and widely recommended.

Solscan.io: The primary Solana blockchain explorer. Navigate to your wallet address, select the "Tokens" tab, and examine token accounts for any with non-zero delegate values.

Phantom's built-in permission viewer: Phantom wallet shows "Connected apps" in settings — sites and protocols you've connected to. While this shows connection permissions, full token delegate visibility requires the above tools.

What You Should Look For

When reviewing your permissions, red flags include:

• Delegate permissions you don't recognize or don't remember granting
• Very high or unlimited token amounts approved to an unfamiliar contract
• Permissions to contracts that haven't been used in months (unnecessary ongoing exposure)
• Any permission granted to a contract address that's very new (few weeks old, low transaction count)

The principle of least privilege applies: revoke any permissions you don't actively need. The cost of revoking is minimal (fractions of a cent on Solana); the cost of leaving unnecessary permissions in place is a potential wallet drain.

How Often Should You Conduct a Permission Audit?

A reasonable schedule for active DeFi users:

• Monthly: Full review using Revoke.cash, revoking anything unnecessary
• After any suspicious interaction: If you accidentally visited a potentially malicious site or signed an unexpected transaction, check immediately
• After any large market event: During high-volume periods (major launches, market crashes), wallet drainer activity increases. Audit after any period of high DeFi activity.

The Two-Wallet Strategy for Permission Management

The most effective approach for active DeFi traders: use a dedicated "DeFi wallet" with small amounts for protocol interactions, keeping main holdings in a separate wallet that never connects to any protocol. Even if the DeFi wallet is fully drained through a malicious permission, your main holdings are entirely unaffected.

The separation costs you slightly more inconvenience (transferring between wallets) but creates an absolute security boundary between your trading activity and your holdings.