CoderDamien/smart-contract-vuln-dataset

# Smart Contract Vulnerability Dataset for Solidity and Ethereum Security A large-scale Solidity smart contract vulnerability dataset for Ethereum security research, smart contract vulnerability detection, vulnerability type classification, vulnerable line localization, and LLM-based code security evaluation. Repository name: `smart-contract-vuln-dataset`. Release version: `v1.0.0`. Release metadata: [metadata/release_metadata.json](metadata/release_metadata.json). Archive checksums: [metadata/archive_checksums.csv](metadata/archive_checksums.csv). DOI status: pending Zenodo archival after the GitHub release is published. This repository publishes processed benchmark data, normalized annotations, construction tools, and documentation used in research on open-source large language models for smart contract vulnerability detection. Chinese version: [README.zh-CN.md](README.zh-CN.md). Dataset card: [DATASET_CARD.md](DATASET_CARD.md). Paper replication package: [replication/](replication/). Supplementary tables: [supplementary/](supplementary/). Keywords: smart contract vulnerability dataset, Solidity vulnerability detection, Ethereum smart contract security, reentrancy detection dataset, smart contract bug localization, vulnerable line localization, vulnerability type classification, LLM code security benchmark, blockchain vulnerability detection, Web3 security dataset. Processed dataset archive: [data/processed/balanced_stage1_resplit_721.tar.gz](data/processed/balanced_stage1_resplit_721.tar.gz). Merged dataset archives: [data/merged/](data/merged/). Release notes: [RELEASE.md](RELEASE.md). ## Paper Replication Package This repository also contains a paper-oriented replication package under [replication/](replication/). It includes split indexes, label mappings, experiment configurations, evaluation scripts, result tables, prediction artifact summaries, rendered figures, and figure source files. Numbered supplementary tables are provided under [supplementary/](supplementary/). The combined workbook [supplementary/supplementary_tables.xlsx](supplementary/supplementary_tables.xlsx) contains worksheets `Table_S1` to `Table_S14`, and the individual CSV files are available under [supplementary/tables/](supplementary/tables/). These tables make the manuscript references to Supplementary Tables S1, S5, S9, and S13 directly auditable. The mapping from repository files to manuscript results is documented in [replication/README.md](replication/README.md). In particular: - Dataset splits are indexed in [replication/data_splits/balanced_stage1_resplit_721/split_file_index.csv](replication/data_splits/balanced_stage1_resplit_721/split_file_index.csv), with checksums and internal paths pointing to [data/processed/balanced_stage1_resplit_721.tar.gz](data/processed/balanced_stage1_resplit_721.tar.gz). - Label mappings are in [replication/label_mapping/](replication/label_mapping/). - Experiment configurations are in [replication/experiment_configs/](replication/experiment_configs/). - Evaluation scripts are in [replication/evaluation/](replication/evaluation/). - Result tables are in [replication/results/](replication/results/). - Prediction artifact summaries are in [replication/prediction_summaries/](replication/prediction_summaries/). - Figure source files and rendered SVG figures are in [replication/figure_source/](replication/figure_source/) and [replication/figures/](replication/figures/). ## Highlights - 105,278 merged samples for binary vulnerability detection. - 95,573 merged samples for vulnerability type classification. - 24,178 merged samples with vulnerable-line annotations. - 8 public upstream sources integrated across curated benchmarks, injected benchmarks, audit-derived labels, weak static-analysis labels, and vulnerability finding databases. - 19,557 low-frequency candidate samples mined, 3,157 review samples prepared, and 2,666 confirmed low-frequency samples accepted for downstream construction. - 8 normalized vulnerability categories. - Task-specific train/validation/test splits for three benchmark tasks. - Multi-source construction pipeline with normalized staging data, merged data, and processed benchmark splits. - Reproducible tools for importing, normalizing, deduplicating, merging, splitting, and auditing data. To the best of our knowledge, this dataset is one of the largest publicly available smart contract vulnerability datasets that integrates vulnerability existence labels, vulnerability type labels, and line-level vulnerability annotations. ## GitHub Topics Recommended repository topics: smart-contracts, solidity, ethereum, vulnerability-detection, smart-contract-security, blockchain-security, web3-security, dataset, llm, code-security, reentrancy, static-analysis, vulnerability-localization, benchmark ## Tasks The dataset supports three tasks: | Task ID | Task | Description | |---|---|---| | `has_vul` | Vulnerability Detection | Binary classification of vulnerable vs. clean smart contract samples. | | `vul_type` | Vulnerability Type Classification | Multi-label classification over normalized vulnerability categories. | | `vul_line` | Vulnerable Line Localization | Multi-line prediction of one or more vulnerable source-code lines. | ## Dataset Statistics ### Merged Dataset | Dataset | Samples | Main Use | |---|---:|---| | `has_vul_merged_stage0` | 105,278 | Binary vulnerability detection | | `vul_type_merged_stage0` | 95,573 | Vulnerability type classification | | `vul_line_merged_stage0` | 24,178 | Vulnerable line localization | Merged archives are provided for users who need more data than the recommended processed split. They are larger multi-source pools after normalization, label mapping, and basic cleaning. ### Processed Benchmark Splits The current recommended processed split is `balanced_stage1_resplit_721`. | Dataset | Train | Validation | Test | Total | |---|---:|---:|---:|---:| | `has_vul_721_stratified_v1` | 17,411 | 4,667 | 2,363 | 24,441 | | `vul_type_721_stratified_v1` | 18,573 | 3,829 | 1,992 | 24,394 | | `vul_line_721_stratified_v1` | 10,155 | 1,529 | 807 | 12,491 | Processed splits are smaller because they apply task-specific filtering, balancing, deduplication, and train/validation/test construction. ### Vulnerability Type Counts The merged `vul_type_merged_stage0` label counts are: | Type | Count | |---|---:| | `access_control` | 22,342 | | `arithmetic` | 24,879 | | `bad_randomness` | 3,020 | | `denial_service` | 102 | | `front_running` | 288 | | `reentrancy` | 35,151 | | `time_manipulation` | 3,049 | | `unchecked_low_calls` | 62,048 | The recommended processed `vul_type_721_stratified_v1` split contains 24,394 samples. Its label-presence counts are: | Type | Train | Validation | Test | Total | |---|---:|---:|---:|---:| | `access_control` | 4,062 | 819 | 406 | 5,287 | | `arithmetic` | 6,711 | 1,631 | 844 | 9,186 | | `bad_randomness` | 1,795 | 471 | 241 | 2,507 | | `denial_service` | 996 | 269 | 153 | 1,418 | | `front_running` | 779 | 218 | 119 | 1,116 | | `reentrancy` | 5,010 | 1,234 | 615 | 6,859 | | `time_manipulation` | 1,449 | 311 | 239 | 1,999 | | `unchecked_low_calls` | 4,190 | 571 | 291 | 5,052 | ### Vulnerable Line Localization Counts The merged `vul_line_merged_stage0` contains 24,178 line-localization samples. Label counts are: | Type | Count | |---|---:| | `access_control` | 5,336 | | `arithmetic` | 4,754 | | `front_running` | 288 | | `reentrancy` | 653 | | `time_manipulation` | 2,985 | | `unchecked_low_calls` | 10,248 | The recommended processed `vul_line_721_stratified_v1` split contains 12,491 samples. Its label-presence counts are: | Type | Train | Validation | Test | Total | |---|---:|---:|---:|---:| | `access_control` | 1,262 | 59 | 34 | 1,355 | | `arithmetic` | 2,548 | 542 | 289 | 3,379 | | `bad_randomness` | 2,014 | 559 | 281 | 2,854 | | `denial_service` | 1,023 | 280 | 143 | 1,446 | | `front_running` | 838 | 233 | 126 | 1,197 | | `reentrancy` | 269 | 77 | 36 | 382 | | `time_manipulation` | 1,462 | 287 | 152 | 1,901 | | `unchecked_low_calls` | 3,312 | 220 | 128 | 3,660 | ## Vulnerability Categories The normalized label space contains the following vulnerability categories: | Label | Description | |---|---| | `access_control` | Access-control and authorization-related vulnerabilities. | | `arithmetic` | Integer overflow, underflow, and arithmetic-related vulnerabilities. | | `bad_randomness` | Unsafe or predictable randomness. | | `denial_service` | Denial-of-service vulnerabilities. | | `front_running` | Transaction-order dependence and front-running-related vulnerabilities. | | `reentrancy` | Reentrancy vulnerabilities. | | `time_manipulation` | Timestamp and time-dependency vulnerabilities. | | `unchecked_low_calls` | Unchecked low-level calls, unchecked send, and unhandled external-call results. | Some intermediate files may also contain `other` or `unknown` labels for source findings that cannot be reliably mapped into the main taxonomy. The recommended benchmark splits filter or document these labels according to the task protocol. ## Data Sources The dataset integrates and normalizes samples from multiple public smart contract vulnerability sources: See [docs/data_sources.md](docs/data_sources.md) for source-level notes and license-review reminders. See [docs/source_usage.md](docs/source_usage.md) for public source links and contribution counts by source. See [docs/data_processing_and_augmentation.md](docs/data_processing_and_augmentation.md) for processing, cleaning, deduplication, and augmentation details. See [docs/construction_effort.md](docs/construction_effort.md) for a summary of the dataset construction effort. See [metadata/upstream_license_review.md](metadata/upstream_license_review.md) and [metadata/authorization_requests.en.md](metadata/authorization_requests.en.md) for license and permission notes. ## Repository Layout . |-- README.md |-- LICENSE |-- CITATION.cff |-- data/ | |-- staging/ | |-- processed/ | `-- metadata/ |-- tools/ |-- docs/ |-- examples/ `-- metadata/ Publication policy: - Raw upstream data is not published in this repository. - `data/staging/`: normalized per-source JSON files before cross-source merge. - `data/processed/`: task-specific benchmark datasets ready for model training and evaluation. - `tools/`: reusable scripts for data construction, statistics, and format conversion. - `docs/`: source documentation, construction protocol, schema, use cases, and limitations. - `metadata/`: machine-readable statistics, label schema, source catalog, and release checklist. For upstream sources with unclear redistribution terms, publish source references, retrieval instructions, and derived metadata only. Do not redistribute original raw source-code archives or raw audit reports. ## Data Format Each normalized sample follows a unified schema: { "sample_id": "source::split::item", "source_dataset": "solidifi_benchmark", "source_split": "train", "source_path": "path/or/original/id", "granularity": "contract", "contract_name": "Example", "function_name": null, "context": ["pragma solidity ...", "contract Example { ... }"], "has_vulnerability": 1, "vulnerabilities": [ { "type": "reentrancy", "line": 42, "line_end": 42, "source_taxonomy": "source taxonomy name", "source_label": "original source label", "evidence": [], "metadata": {} } ], "label_confidence": "silver", "label_origin": "source_annotation", "dedup_hash_raw": "...", "dedup_hash_normalized": "...", "metadata": {} } See [docs/schema.md](docs/schema.md) for the full field description. ## Quick Start Download or clone the repository with Git LFS enabled, then extract the processed benchmark archive: git lfs install git clone https://github.com/CoderDamien/smart-contract-vuln-dataset.git cd smart-contract-vuln-dataset git checkout v1.0.0 git lfs pull tar -xzf data/processed/balanced_stage1_resplit_721.tar.gz -C data/processed/ tar -xzf data/merged/has_vul_merged_stage0.tar.gz -C data/merged/ tar -xzf data/merged/vul_type_merged_stage0.tar.gz -C data/merged/ tar -xzf data/merged/vul_line_merged_stage0.tar.gz -C data/merged/ import json from pathlib import Path path = Path("data/processed/balanced_stage1_resplit_721/has_vul_721_stratified_v1/train.json") samples = json.loads(path.read_text(encoding="utf-8")) print("Samples:", len(samples)) print("Fields:", samples[0].keys()) print("Label:", samples[0]["has_vulnerability"]) More examples are provided in [docs/usage.md](docs/usage.md) and [examples/load_dataset.py](examples/load_dataset.py). ## Construction Pipeline The dataset is built through the following pipeline: 1. Collect raw public datasets and source-code corpora. 2. Normalize each source into a unified sample schema. 3. Map source-specific vulnerability labels into a shared taxonomy. 4. Deduplicate samples using raw and normalized source-code hashes. 5. Merge sources by task. 6. Build task-specific train/validation/test splits. 7. Audit label coverage, line-label validity, duplicate IDs, and source distribution. See [docs/dataset_construction.md](docs/dataset_construction.md). ## Citation If you use this dataset, please cite the dataset repository and the related paper: @dataset{xu_smart_contract_vulnerability_dataset_2026, title = {Smart Contract Vulnerability Dataset for Solidity and Ethereum Security}, author = {Xu, Daming}, year = {2026}, version = {v1.0.0}, publisher = {GitHub}, url = {https://github.com/CoderDamien/smart-contract-vuln-dataset} } After Zenodo archival, replace the URL-only citation with the DOI assigned to the release. Please also cite the original upstream datasets where applicable. See [docs/data_sources.md](docs/data_sources.md). ## License Suggested license policy for the public repository: - Repository code and documentation: MIT. - Self-created dataset metadata, statistics, and annotation schema: CC BY 4.0. - Raw upstream data: not redistributed. - Processed samples that contain upstream source code should be released only when the corresponding upstream license permits redistribution, or replaced by source pointers and reconstruction scripts. Preserve upstream citations, notices, and license files. See [metadata/upstream_license_review.md](metadata/upstream_license_review.md). ## Limitations This dataset integrates heterogeneous sources with different label origins, granularities, and confidence levels. Labels may include source-specific noise, synthetic vulnerabilities, weak labels, and manually reviewed subsets. See [docs/limitations.md](docs/limitations.md) before using the dataset for benchmark claims.