SCBF: Automated Detection and Patching of Smart Contract Vulnerabilities via Mythril and Open Zeppelin Integration

Volume 18, Number 3

SCBF: Automated Detection and Patching of Smart Contract Vulnerabilities via Mythril and Open Zeppelin Integration

Authors

Iman Darvishi ¹, Alireza Esfahani ² and Hadeel Alsolai ², ¹ University of West London, UK, ² Princess Nourah Bint Abdul rahman University, Saudi Arabia

Abstract

The Smart Contract Bug Fix (SCBF) framework is an open-source platform for automated detection and remediation of vulnerabilities in Ethereum and decentralised finance smart contracts. SCBF combines symbolic execution through Mythril with OpenZeppelin-based repair strategies to support an end-to-end workflow from vulnerability scanning to patch generation and reporting. The framework organises analysis results using SWC-based classification, applies deterministic patching rules, and exports logs and results through an analytics dashboard. SCBF was evaluated on two public datasets, SmartBugs Curated and Messi-Q. Under the counting scheme adopted in this paper, the framework achieved a fixed rate of 68.5% (170 of 248 Mythril findings) on SmartBugs Curated and a consolidated fix rate of 77.3% (958 of 1,239 findings) on Messi-Q. The results indicate effective handling of several common SWC classes, including tx. origin misuse, arithmetic issues, and re-entrancy related patterns, while also showing lower performance on environment-dependent vulnerabilities. These findings indicate that SCBF supports reproducible and traceable smart contract remediation workflows.

Keywords

Automated Patch, Blockchain, Bug Fix, Security, Smart Contracts, Solidity, Symbolic Execution, Vulnerability Remediation