With the increasing adoption of smart contracts, ensuring their security has become a critical concern. Numerous vulnerabilities and attacks have been identified and exploited, resulting in significant financial losses. In response, researchers have developed various tools and techniques to identify and prevent vulnerabilities in smart contracts. In this survey, we present a systematic overview of the quality assurance of smart contracts, covering vulnerabilities, attacks, defenses, and tool support. By classifying vulnerabilities based on known attacks, we can identify patterns and common weaknesses that need to be addressed. Moreover, in order to effectively protect smart contracts, we have created a labeled dataset to evaluate various vulnerability detection tools and compare their effectiveness.

翻译：随着智能合约的广泛采用，确保其安全性已成为关键问题。众多漏洞和攻击已被识别并利用，导致重大经济损失。为此，研究人员开发了多种工具和技术来识别和预防智能合约中的漏洞。本综述系统概述了智能合约的质量保证，涵盖漏洞、攻击、防御及工具支持。通过基于已知攻击对漏洞进行分类，我们能够识别需要解决的模式及常见弱点。此外，为有效保护智能合约，我们创建了标注数据集，用于评估多种漏洞检测工具并比较其有效性。