{"id":13631473,"url":"https://github.com/SmartContractSecurity/SWC-registry","last_synced_at":"2025-04-17T22:31:01.234Z","repository":{"id":37484542,"uuid":"145776525","full_name":"SmartContractSecurity/SWC-registry","owner":"SmartContractSecurity","description":"Smart Contract Weakness Classification and Test Cases","archived":false,"fork":false,"pushed_at":"2023-10-23T21:19:58.000Z","size":2782,"stargazers_count":834,"open_issues_count":8,"forks_count":165,"subscribers_count":47,"default_branch":"master","last_synced_at":"2024-05-19T00:05:50.213Z","etag":null,"topics":["ethereum","security","smart-contracts"],"latest_commit_sha":null,"homepage":"https://swcregistry.io/","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SmartContractSecurity.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2018-08-23T00:09:08.000Z","updated_at":"2024-05-17T20:36:39.000Z","dependencies_parsed_at":"2023-01-28T23:46:12.519Z","dependency_job_id":"bc170aeb-dc28-467b-b280-2c48021ca6de","html_url":"https://github.com/SmartContractSecurity/SWC-registry","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SmartContractSecurity%2FSWC-registry","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SmartContractSecurity%2FSWC-registry/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SmartContractSecurity%2FSWC-registry/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SmartContractSecurity%2FSWC-registry/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SmartContractSecurity","download_url":"https://codeload.github.com/SmartContractSecurity/SWC-registry/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223768482,"owners_count":17199355,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ethereum","security","smart-contracts"],"created_at":"2024-08-01T22:02:26.919Z","updated_at":"2024-11-08T23:30:48.747Z","avatar_url":"https://github.com/SmartContractSecurity.png","language":null,"funding_links":[],"categories":["Others"],"sub_categories":[],"readme":"# This registry is no longer actively maintained\n\n## New SWC entries have not not been added since 2020\n\nThis registry has not been significantly updated since 2020, and is no longer actively maintained. While some maintenance may be done\nto enhance or clarify the status of the current content, and pointers will be added to new work that is maintained such as the \n[EEA EthTrust Security Levels Specification](https://entethalliance.org/specs/ethtrust-sl/), new SWCs are no longer being added,\nand readers should check external sources to clarify the relevance of existing content.\n\nAll the vulnerabilities described in this repository were incorporated into version 1 of the **[EEA EthTrust Security Levels specification](https://entethalliance.org/specs/ethtrust-sl)**, published in August 2022\n\nThe [EEA EthTrust Security Levels](https://entethalliance.org/groups/ethtrust) project is actively maintained. \nThe **[Editor's draft for a new version](https://entethalliance.github.io/eta-registry/security-levels-spec.html)** is publicly available.\n\n[EthTrust Security Leveles Version 2](https://entethalliance.org/specs/ethtrust-sl/v2) was published in December 2023, with publication of version 3 expected in early 2025.\n\nAnother project that has been maintained over a number of years is the [Smart Contract Security Verification Standard](https://github.com/ComposableSecurity/SCSVS).\n\nThe EthTrust specification is specific to Solidity code, and aims to comprehensively identify vulnerabilities that need to be checked for, and if present eliminated. The SCSVS is a more general development guideline for security testing and remediation, applicable to a large range of projects.\n\n# Smart Contract Weakness Classification Registry\n\nThe Smart Contract Weakness Classification Registry (SWC Registry) is an implementation of the weakness classification scheme proposed in [EIP-1470](https://github.com/ethereum/EIPs/issues/1469). It is loosely aligned to the terminologies and structure used in the Common Weakness Enumeration ([CWE](https://cwe.mitre.org)) while overlaying a wide range of weakness variants that are specific to smart contracts.\n\nThe goals of this project were as follows:\n\n- Provide a straightforward way to classify security issues in smart contract systems.\n- Define a common language for describing security issues in smart contract systems' architecture, design, or code.\n- Serve as a way to train and increase performance for smart contract security analysis tools.\n\n\n\n### Scope of Weaknesses\n\nSWCs are concerned with weaknesses that can be identified within Solidity code of a smart contract.\nWeaknesses in 'smart contract adjacent' code are not covered by this registry of Weaknesses. \nFor example, the [gas siphoning attack](https://github.com/SmartContractSecurity/SWC-registry/pull/140) occurs in wallet code,\nand should be protected against in wallet code.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FSmartContractSecurity%2FSWC-registry","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FSmartContractSecurity%2FSWC-registry","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FSmartContractSecurity%2FSWC-registry/lists"}