Skip to content
/ ZepCompare Public

ASE'25: Demystifying OpenZeppelin's Own Vulnerabilities and Analyzing Their Propagation in Smart Contracts

License

MIT license
3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

HelayLiu/ZepCompare

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
code
code
 
 
datasets
datasets
 
 
LICENSE
LICENSE
 
 
Missing_Reasons.md
Missing_Reasons.md
 
 
README.md
README.md
 
 
configs.py
configs.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

ZepCompare

Overview

This repository is the artifact of the paper "Demystifying OpenZeppelin's Own Vulnerabilities and Analyzing Their Propagation in Smart Contracts". ZepCompare is a tool for detecting OpenZeppelin’s own vulnerabilities and analyzing their propagation in third-party smart contracts.

How to use

The code of ZepCompare are in code, and the groundtruth dataset is in datasets/groundtruth, the addresses of the large scale experiment are in datasets/large_size

To run ZepCompare:

  1. Install dependency:
pip install -r requirement.txt
  1. run voliation_detection/detection_main.py

License

This project is released under the MIT License.

Citation

Please cite the paper as follows if you use the data or code from ZepCompare:

@inproceedings{liu2025zepcompare,
      title={{Demystifying OpenZeppelin's Own Vulnerabilities and Analyzing Their Propagation in Smart Contracts}}, 
      author={Liu, Han and Wu, Daoyuan and Sun, Yuqiang and Wang, Shuai and Liu, Yang and Yixiang, Chen},
      booktitle={Proc. IEEE/ACM Automated Software Engineering (ASE)},
      year={2025}
}

About

ASE'25: Demystifying OpenZeppelin's Own Vulnerabilities and Analyzing Their Propagation in Smart Contracts

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages