The Smart Contract Weakness Classification Registry offers a complete and up-to-date catalogue of known smart contract vulnerabilities and anti-patterns along with real-world examples. Browsing the registry is a good way of keeping up-to-date with the latest attacks. It has been proposed formally in EIP-1470 and is loosely aligned with the Common Weakness Enumeration (CWE).

Additionally, the Smart Contract Security Verification Standard (SCSVS) contains a checklist-style collection of vital security properties aimed at standardizing the security of smart contracts for developers, architects, security reviewers and vendors.

Back to top