With the increasing adoption of smart contracts, ensuring their security has become a critical concern. Numerous vulnerabilities and attacks have been identified and exploited, resulting in significant financial losses. In response, researchers have developed various tools and techniques to identify and prevent vulnerabilities in smart contracts. In this survey, we present a systematic overview of the quality assurance of smart contracts, covering vulnerabilities, attacks, defenses, and tool support. By classifying vulnerabilities based on known attacks, we can identify patterns and common weaknesses that need to be addressed. Moreover, in order to effectively protect smart contracts, we have created a labeled dataset to evaluate various vulnerability detection tools and compare their effectiveness.

翻译：随着智能合约的日益普及，确保其安全性已成为一个关键问题。大量漏洞和攻击已被识别并利用，造成了巨大的经济损失。为此，研究人员开发了多种工具和技术来识别并防范智能合约中的漏洞。本综述对智能合约的质量保障进行了系统概述，涵盖了漏洞、攻击、防御及工具支持。通过基于已知攻击对漏洞进行分类，我们能够识别出待解决的漏洞模式与常见弱点。此外，为有效保护智能合约，我们创建了一个标注数据集，用于评估各类漏洞检测工具并比较其有效性。