Merge branch 'master' of github.com:ConsenSys/mythril

6 years ago · f3c16d8617
parent cb65529075 395cbd2739
commit f3c16d8617
77 changed files with 528 additions and 306 deletions
--- a/README.md
+++ b/README.md
@ -2,16 +2,16 @@
 [![Discord](https://img.shields.io/discord/481002907366588416.svg)](https://discord.gg/E3YrVtG)
 [![PyPI](https://badge.fury.io/py/mythril.svg)](https://pypi.python.org/pypi/mythril)
 ![Master Build Status](https://img.shields.io/circleci/project/github/ConsenSys/mythril/master.svg)
-[![Waffle.io - Columns and their card count](https://badge.waffle.io/ConsenSys/mythril.svg?columns=all)](https://waffle.io/ConsenSys/mythril)
+[![Waffle.io - Columns and their card count](https://badge.waffle.io/ConsenSys/mythril.svg?columns=In%20Progress)](https://waffle.io/ConsenSys/mythril)
 [![Sonarcloud - Maintainability](https://sonarcloud.io/api/project_badges/measure?project=mythril&metric=sqale_rating)](https://sonarcloud.io/dashboard?id=mythril)
-
+[![PyPI Statistics](https://pypistats.com/badge/mythril.svg)](https://pypistats.com/package/mythril)
 <img height="120px" align="right" src="https://github.com/ConsenSys/mythril/raw/master/static/mythril.png" alt="mythril" />

 Mythril OSS is the classic security analysis tool for Ethereum smart contracts. It uses concolic analysis, taint analysis and control flow checking to detect a variety of security vulnerabilities. 

 Whether you want to contribute, need support, or want to learn what we have cooking for the future, our [Discord server](https://discord.gg/E3YrVtG) will serve your needs!

-Oh and by the way, we're now building a whole security tools ecosystem with [Mythril Platform API](https://mythril.ai). You should definitely check that out as well.
+Oh and by the way, we're building an easy-to-use SaaS solution and tools ecosystem for Ethereum developers called [Mythril Platform](https://mythril.ai). You should definitely check that out as well.

 ## Installation and setup

@ -35,9 +35,17 @@ Instructions for using the 'myth' tool are found on the [Wiki](https://github.co

 For support or general discussions please join the Mythril community on [Discord](https://discord.gg/E3YrVtG).

-## Presentations, papers and videos
+## Vulnerability Remediation
+
+Visit the [Smart Contract Vulnerability Classification Registry](https://smartcontractsecurity.github.io/SWC-registry/) to find detailed information and remediation guidance for the vulnerabilities reported.
+
+## Presentations, papers and articles

- [HITBSecConf 2018 conference paper](https://github.com/b-mueller/smashing-smart-contracts/blob/master/smashing-smart-contracts-1of1.pdf)
- [HITBSecConf 2018 - Smashing Ethereum smart contracts for fun and real profit](https://www.youtube.com/watch?v=iqf6epACgds)
+- [Analyzing Ethereum Smart Contracts for Vulnerabilities](https://hackernoon.com/scanning-ethereum-smart-contracts-for-vulnerabilities-b5caefd995df)
+- [What Caused the Parity SUICIDE Vulnerability & How to Detect Similar Bugs](https://hackernoon.com/what-caused-the-latest-100-million-ethereum-bug-and-a-detection-tool-for-similar-bugs-7b80f8ab7279)
+- [Detecting Integer Overflows in Ethereum Smart Contracts](https://media.consensys.net/detecting-batchoverflow-and-similar-flaws-in-ethereum-smart-contracts-93cf5a5aaac8)
+- [How Formal Verification Can Ensure Flawless Smart Contracts](https://media.consensys.net/how-formal-verification-can-ensure-flawless-smart-contracts-cbda8ad99bd1)
+- [Smashing Smart Contracts for Fun and Real Profit](https://hackernoon.com/hitb2018ams-smashing-smart-contracts-for-fun-and-real-profit-720f5e3ac777)
+- [HITBSecConf 2018 - Presentation video](https://www.youtube.com/watch?v=iqf6epACgds)
 - [EDCon Toronto 2018 - Mythril: Find bugs and verify security properties in your contracts](https://www.youtube.com/watch?v=NJ9StJThxZY&feature=youtu.be&t=3h3m18s)

--- a/mythril/analysis/modules/delegatecall.py
+++ b/mythril/analysis/modules/delegatecall.py
@ -1,4 +1,5 @@
 import re
+from mythril.analysis.swc_data import DELEGATECALL_TO_UNTRUSTED_CONTRACT
 from mythril.analysis.ops import get_variable, VarType
 from mythril.analysis.report import Issue
 import logging
@ -43,8 +44,9 @@ def _concrete_call(call, state, address, meminstart):
    if not re.search(r'calldata.*_0', str(state.mstate.memory[meminstart.val])):
        return []

-    issue = Issue(call.node.contract_name, call.node.function_name, address,
-                  "Call data forwarded with delegatecall()", "Informational")
+    issue = Issue(contract=call.node.contract_name, function=call.node.function_name, address=address,
+                  swc_id=DELEGATECALL_TO_UNTRUSTED_CONTRACT, title="Call data forwarded with delegatecall()",
+                  _type="Informational")

    issue.description = \
        "This contract forwards its call data via DELEGATECALL in its fallback function. " \
@ -58,7 +60,8 @@ def _concrete_call(call, state, address, meminstart):


 def _symbolic_call(call, state, address, statespace):
-    issue = Issue(call.node.contract_name, call.node.function_name, address, call.type + " to a user-supplied address")
+    issue = Issue(contract=call.node.contract_name, function=call.node.function_name, address=address,
+                  swc_id=DELEGATECALL_TO_UNTRUSTED_CONTRACT, title=call.type + " to a user-supplied address")

    if "calldata" in str(call.to):
        issue.description = \
--- a/mythril/analysis/modules/dependence_on_predictable_vars.py
+++ b/mythril/analysis/modules/dependence_on_predictable_vars.py
@ -3,6 +3,7 @@ from z3 import *
 from mythril.analysis.ops import VarType
 from mythril.analysis import solver
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import TIMESTAMP_DEPENDENCE, PREDICTABLE_VARS_DEPENDENCE
 from mythril.exceptions import UnsatError
 import logging

@ -27,15 +28,14 @@ def execute(statespace):

    for call in statespace.calls:

-        if ("callvalue" in str(call.value)):
+        if "callvalue" in str(call.value):
            logging.debug("[DEPENDENCE_ON_PREDICTABLE_VARS] Skipping refund function")
            continue

        # We're only interested in calls that send Ether

-        if call.value.type == VarType.CONCRETE:
-            if call.value.val == 0:
-                continue
+        if call.value.type == VarType.CONCRETE and call.value.val == 0:
+            continue

        address = call.state.get_current_instruction()['address']

@ -56,8 +56,10 @@ def execute(statespace):
            for item in found:
                description += "- block.{}\n".format(item)
            if solve(call):
-                issue = Issue(call.node.contract_name, call.node.function_name, address, "Dependence on predictable environment variable", "Warning",
-                              description)
+                swc_type = TIMESTAMP_DEPENDENCE if item == 'timestamp' else PREDICTABLE_VARS_DEPENDENCE
+                issue = Issue(contract=call.node.contract_name, function=call.node.function_name, address=address,
+                              swc_id=swc_type, title="Dependence on predictable environment variable",
+                              _type="Warning", description=description)
                issues.append(issue)

        # Second check: blockhash
@ -84,8 +86,9 @@ def execute(statespace):
                                           " is used to determine Ether recipient"
                            description += ", this expression will always be equal to zero."

-                        issue = Issue(call.node.contract_name, call.node.function_name, address, "Dependence on predictable variable",
-                                      "Warning", description)
+                        issue = Issue(contract=call.node.contract_name, function=call.node.function_name,
+                                      address=address, title="Dependence on predictable variable",
+                                      _type="Warning", description=description, swc_id=PREDICTABLE_VARS_DEPENDENCE)
                        issues.append(issue)
                        break
                else:
@ -104,8 +107,9 @@ def execute(statespace):
                        if index and solve(call):
                            description += 'block.blockhash() is calculated using a value from storage ' \
                                           'at index {}'.format(index)
-                            issue = Issue(call.node.contract_name, call.node.function_name, address, "Dependence on predictable variable",
-                                          "Informational", description)
+                            issue = Issue(contract=call.node.contract_name, function=call.node.function_name,
+                                          address=address, title="Dependence on predictable variable",
+                                          _type="Informational", description=description, swc_id=PREDICTABLE_VARS_DEPENDENCE)
                            issues.append(issue)
                            break
    return issues
--- a/mythril/analysis/modules/deprecated_ops.py
+++ b/mythril/analysis/modules/deprecated_ops.py
@ -1,4 +1,5 @@
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import TX_ORIGIN_USAGE
 import logging


@ -22,12 +23,14 @@ def execute(statespace):

            instruction = state.get_current_instruction()

-            if(instruction['opcode'] == "ORIGIN"):
-
-                issue = Issue(node.contract_name, node.function_name, instruction['address'], "Use of tx.origin", "Warning",
-                    "Function " + node.function_name + " retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.\nSee also: https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin"
-                )
+            if instruction['opcode'] == "ORIGIN":
+                description = "Function %s retrieves the transaction origin (tx.origin) using the ORIGIN opcode. " \
+                              "Use msg.sender instead.\nSee also: " \
+                              "https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin".format(node.function_name)

+                issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                              title="Use of tx.origin", _type="Warning", swc_id=TX_ORIGIN_USAGE,
+                              description=description)
                issues.append(issue)

    return issues
--- a/mythril/analysis/modules/ether_send.py
+++ b/mythril/analysis/modules/ether_send.py
@ -2,6 +2,7 @@ from z3 import *
 from mythril.analysis.ops import *
 from mythril.analysis import solver
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import UNPROTECTED_ETHER_WITHDRAWAL
 from mythril.exceptions import UnsatError
 import re
 import logging
@ -115,8 +116,9 @@ def execute(statespace):

                    debug = "SOLVER OUTPUT:\n" + solver.pretty_print_model(model)

-                    issue = Issue(call.node.contract_name, call.node.function_name, address, "Ether send", "Warning",
-                                  description, debug)
+                    issue = Issue(contract=call.node.contract_name, function=call.node.function_name, address=address,
+                                  title="Ether send", _type="Warning", swc_id=UNPROTECTED_ETHER_WITHDRAWAL,
+                                  description=description, debug=debug)
                    issues.append(issue)

                except UnsatError:
--- a/mythril/analysis/modules/exceptions.py
+++ b/mythril/analysis/modules/exceptions.py
@ -1,4 +1,5 @@
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import ASSERT_VIOLATION
 from mythril.exceptions import UnsatError
 from mythril.analysis import solver
 import logging
@ -24,19 +25,25 @@ def execute(statespace):
        for state in node.states:

            instruction = state.get_current_instruction()
-            if(instruction['opcode'] == "ASSERT_FAIL"):
+            if instruction['opcode'] == "ASSERT_FAIL":
                try:
                    model = solver.get_model(node.constraints)
                    address = state.get_current_instruction()['address']

-                    description = "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. "
-                    description += "This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. "
+                    description = "A reachable exception (opcode 0xfe) has been detected. " \
+                                  "This can be caused by type errors, division by zero, " \
+                                  "out-of-bounds array access, or assert violations. "
+                    description += "This is acceptable in most situations. " \
+                                   "Note however that `assert()` should only be used to check invariants. " \
+                                   "Use `require()` for regular input checking. "

                    debug = "The exception is triggered under the following conditions:\n\n"

                    debug += solver.pretty_print_model(model)

-                    issues.append(Issue(node.contract_name, node.function_name, address, "Exception state", "Informational", description, debug))
+                    issues.append(Issue(contract=node.contract_name, function=node.function_name, address=address,
+                                        swc_id=ASSERT_VIOLATION, title="Exception state", _type="Informational",
+                                        description=description, debug=debug))

                except UnsatError:
                    logging.debug("[EXCEPTIONS] no model found")
--- a/mythril/analysis/modules/external_calls.py
+++ b/mythril/analysis/modules/external_calls.py
@ -2,6 +2,7 @@ from z3 import *
 from mythril.analysis.ops import *
 from mythril.analysis.report import Issue
 from mythril.analysis import solver
+from mythril.analysis.swc_data import REENTRANCY
 import re
 import logging

@ -15,11 +16,12 @@ Check for call.value()() to external addresses
 MAX_SEARCH_DEPTH = 64


-def search_children(statespace, node, start_index=0, depth=0, results=[]):
-
+def search_children(statespace, node, start_index=0, depth=0, results=None):
+    if results is None:
+        results = []
    logging.debug("SEARCHING NODE %d", node.uid)

-    if(depth < MAX_SEARCH_DEPTH):
+    if depth < MAX_SEARCH_DEPTH:

        n_states = len(node.states)

@ -35,7 +37,7 @@ def search_children(statespace, node, start_index=0, depth=0, results=[]):
            if edge.node_from == node.uid:
                children.append(statespace.nodes[edge.node_to])

-        if (len(children)):
+        if len(children):
            for node in children:
                return search_children(statespace, node, depth=depth + 1, results=results)

@ -54,20 +56,20 @@ def execute(statespace):
        state = call.state
        address = state.get_current_instruction()['address']

-        if (call.type == "CALL"):
+        if call.type == "CALL":

            logging.info("[EXTERNAL_CALLS] Call to: %s, value = %s, gas = %s" % (str(call.to), str(call.value), str(call.gas)))

-            if (call.to.type == VarType.SYMBOLIC and (call.gas.type == VarType.CONCRETE and call.gas.val > 2300) or (call.gas.type == VarType.SYMBOLIC and "2300" not in str(call.gas))):
+            if call.to.type == VarType.SYMBOLIC and (call.gas.type == VarType.CONCRETE and call.gas.val > 2300) or (call.gas.type == VarType.SYMBOLIC and "2300" not in str(call.gas)):

                description = "This contract executes a message call to "

                target = str(call.to)
                user_supplied = False

-                if ("calldata" in target or "caller" in target):
+                if "calldata" in target or "caller" in target:

-                    if ("calldata" in target):
+                    if "calldata" in target:
                        description += "an address provided as a function argument. "
                    else:
                        description += "the address of the transaction sender. "
@ -76,7 +78,7 @@ def execute(statespace):
                else:
                    m = re.search(r'storage_([a-z0-9_&^]+)', str(call.to))

-                    if (m):
+                    if m:
                        idx = m.group(1)

                        func = statespace.find_storage_write(state.environment.active_account.address, idx)
@ -90,15 +92,20 @@ def execute(statespace):

                if user_supplied:

-                    description += "Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state."
+                    description += "Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. " \
+                                   "Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state."

-                    issue = Issue(call.node.contract_name, call.node.function_name, address, "Message call to external contract", "Warning", description)
+                    issue = Issue(contract=call.node.contract_name, function=call.node.function_name,
+                                  address=address, title="Message call to external contract", _type="Warning",
+                                  description=description, swc_id=REENTRANCY)

                else:

                    description += "to another contract. Make sure that the called contract is trusted and does not execute user-supplied code."

-                    issue = Issue(call.node.contract_name, call.node.function_name, address, "Message call to external contract", "Informational", description)
+                    issue = Issue(contract=call.node.contract_name, function=call.node.function_name, address=address,
+                                  title="Message call to external contract", _type="Informational",
+                                  description=description, swc_id=REENTRANCY)

                issues.append(issue)

@ -113,10 +120,15 @@ def execute(statespace):

                    logging.debug("[EXTERNAL_CALLS] Detected state changes at addresses: " + str(state_change_addresses))

-                    if (len(state_change_addresses)):
+                    if len(state_change_addresses):
                        for address in state_change_addresses:
-                            description = "The contract account state is changed after an external call. Consider that the called contract could re-enter the function before this state change takes place. This can lead to business logic vulnerabilities."
-                            issue = Issue(call.node.contract_name, call.node.function_name, address, "State change after external call", "Warning", description)
+                            description = "The contract account state is changed after an external call. " \
+                                          "Consider that the called contract could re-enter the function before this " \
+                                          "state change takes place. This can lead to business logic vulnerabilities."
+
+                            issue = Issue(contract=call.node.contract_name, function=call.node.function_name,
+                                          address=address, title="State change after external call", _type="Warning",
+                                          description=description, swc_id=REENTRANCY)
                            issues.append(issue)

    return issues
--- a/mythril/analysis/modules/integer.py
+++ b/mythril/analysis/modules/integer.py
@ -2,6 +2,7 @@ from z3 import *
 from mythril.analysis import solver
 from mythril.analysis.ops import *
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import INTEGER_OVERFLOW_AND_UNDERFLOW
 from mythril.exceptions import UnsatError
 from mythril.laser.ethereum.taint_analysis import TaintRunner
 import re
@ -16,6 +17,7 @@ For every SUB instruction, check if there's a possible state where op1 > op0.
 For every ADD, MUL instruction, check if there's a possible state where op1 + op0 > 2^32 - 1
 '''

+
 def execute(statespace):
    """
    Executes analysis module for integer underflow and integer overflow
@ -85,7 +87,8 @@ def _check_integer_overflow(statespace, state, node):
        return issues

    # Build issue
-    issue = Issue(node.contract_name, node.function_name, instruction['address'], "Integer Overflow", "Warning")
+    issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                  swc_id=INTEGER_OVERFLOW_AND_UNDERFLOW, title="Integer Overflow", _type="Warning")

    issue.description = "A possible integer overflow exists in the function `{}`.\n" \
                        "The addition or multiplication may result in a value higher than the maximum representable integer.".format(
@ -173,8 +176,8 @@ def _check_integer_underflow(statespace, state, node):
                if len(interesting_usages) == 0:
                    return issues

-                issue = Issue(node.contract_name, node.function_name, instruction['address'], "Integer Underflow",
-                              "Warning")
+                issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                              swc_id=INTEGER_OVERFLOW_AND_UNDERFLOW, title="Integer Underflow", _type="Warning")

                issue.description = "A possible integer underflow exists in the function `" + node.function_name + "`.\n" \
                                                                                                                   "The subtraction may result in a value < 0."
@ -211,7 +214,7 @@ def _check_sstore(state, taint_result):
    return taint_result.check(state, -2)


-def _search_children(statespace, node, expression, taint_result=None, constraint=[], index=0, depth=0, max_depth=64):
+def _search_children(statespace, node, expression, taint_result=None, constraint=None, index=0, depth=0, max_depth=64):
    """
    Checks the statespace for children states, with JUMPI or SSTORE instuctions,
    for dependency on expression
@ -224,6 +227,9 @@ def _search_children(statespace, node, expression, taint_result=None, constraint
    :param max_depth: Max depth to explore
    :return: List of states that match the opcodes and are dependent on expression
    """
+    if constraint is None:
+        constraint = []
+
    logging.debug("SEARCHING NODE for usage of an overflowed variable %d", node.uid)

    if taint_result is None:
--- a/mythril/analysis/modules/multiple_sends.py
+++ b/mythril/analysis/modules/multiple_sends.py
@ -1,4 +1,5 @@
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import *
 from mythril.laser.ethereum.cfg import JumpType
 """
 MODULE DESCRIPTION:
@ -20,9 +21,8 @@ def execute(statespace):
        if len(findings) > 0:
            node = call.node
            instruction = call.state.get_current_instruction()
-            issue = Issue(node.contract_name, node.function_name, instruction['address'],
-                          "Multiple Calls",
-                          "Informational")
+            issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                          swc_id=MULTIPLE_SENDS, title="Multiple Calls", _type="Informational")

            issue.description = \
                "Multiple sends exist in one transaction, try to isolate each external call into its own transaction." \
--- a/mythril/analysis/modules/suicide.py
+++ b/mythril/analysis/modules/suicide.py
@ -1,6 +1,7 @@
 from mythril.analysis import solver
 from mythril.analysis.ops import *
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import UNPROTECTED_SELFDESTRUCT
 from mythril.exceptions import UnsatError
 import logging

@ -63,7 +64,9 @@ def _analyze_state(state, node):

        debug = "SOLVER OUTPUT:\n" + solver.pretty_print_model(model)

-        issue = Issue(node.contract_name, node.function_name, instruction['address'], "Unchecked SUICIDE", "Warning", description, debug)
+        issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                      swc_id=UNPROTECTED_SELFDESTRUCT, title="Unchecked SUICIDE", _type="Warning",
+                      description=description, debug=debug)
        issues.append(issue)
    except UnsatError:
            logging.debug("[UNCHECKED_SUICIDE] no model found")
--- a/mythril/analysis/modules/transaction_order_dependence.py
+++ b/mythril/analysis/modules/transaction_order_dependence.py
@ -4,6 +4,7 @@ import re
 from mythril.analysis import solver
 from mythril.analysis.ops import *
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import TX_ORDER_DEPENDENCE
 from mythril.exceptions import UnsatError

 '''
@ -29,9 +30,8 @@ def execute(statespace):
        if len(changing_sstores) > 0:
            node = call.node
            instruction = call.state.get_current_instruction()
-            issue = Issue(node.contract_name, node.function_name, instruction['address'],
-                          "Transaction order dependence",
-                          "Warning")
+            issue = Issue(contract=node.contract_name, function=node.function_name, address=instruction['address'],
+                          title="Transaction order dependence", swc_id=TX_ORDER_DEPENDENCE, _type="Warning")

            issue.description = \
                "A possible transaction order dependence vulnerability exists in function {}. The value or " \
--- a/mythril/analysis/modules/unchecked_retval.py
+++ b/mythril/analysis/modules/unchecked_retval.py
@ -1,4 +1,6 @@
 from mythril.analysis.report import Issue
+from mythril.analysis.swc_data import UNCHECKED_RET_VAL
+
 from mythril.laser.ethereum.svm import NodeFlags
 import logging
 import re
@ -41,17 +43,19 @@ def execute(statespace):

                instr = state.get_current_instruction()

-                if (instr['opcode'] == 'ISZERO' and re.search(r'retval', str(state.mstate.stack[-1]))):
+                if instr['opcode'] == 'ISZERO' and re.search(r'retval', str(state.mstate.stack[-1])):
                    retval_checked = True
                    break

            if not retval_checked:

                address = state.get_current_instruction()['address']
-                issue = Issue(node.contract_name, node.function_name, address, "Unchecked CALL return value")
+                issue = Issue(contract=node.contract_name, function=node.function_name, address=address,
+                              title="Unchecked CALL return value", swc_id=UNCHECKED_RET_VAL)

                issue.description = \
-                    "The return value of an external call is not checked. Note that execution continue even if the called contract throws."
+                    "The return value of an external call is not checked. " \
+                    "Note that execution continue even if the called contract throws."

                issues.append(issue)

@ -64,7 +68,7 @@ def execute(statespace):
                state = node.states[idx]
                instr = state.get_current_instruction()

-                if (instr['opcode'] == 'CALL'):
+                if instr['opcode'] == 'CALL':

                    retval_checked = False

@ -74,7 +78,7 @@ def execute(statespace):
                            _state = node.states[_idx]
                            _instr = _state.get_current_instruction()

-                            if (_instr['opcode'] == 'ISZERO' and re.search(r'retval', str(_state .mstate.stack[-1]))):
+                            if _instr['opcode'] == 'ISZERO' and re.search(r'retval', str(_state .mstate.stack[-1])):
                                retval_checked = True
                                break

@ -84,10 +88,12 @@ def execute(statespace):
                    if not retval_checked:

                        address = instr['address']
-                        issue = Issue(node.contract_name, node.function_name, address, "Unchecked CALL return value")
+                        issue = Issue(contract=node.contract_name, function=node.function_name,
+                                      address=address, title="Unchecked CALL return value", swc_id=UNCHECKED_RET_VAL)

                        issue.description = \
-                            "The return value of an external call is not checked. Note that execution continue even if the called contract throws."
+                            "The return value of an external call is not checked. " \
+                            "Note that execution continue even if the called contract throws."

                        issues.append(issue)

--- a/mythril/analysis/report.py
+++ b/mythril/analysis/report.py
@ -3,9 +3,10 @@ import json
 import operator
 from jinja2 import PackageLoader, Environment

+
 class Issue:

-    def __init__(self, contract, function, address, title, _type="Informational", description="", debug=""):
+    def __init__(self, contract, function, address, swc_id, title, _type="Informational", description="", debug=""):

        self.title = title
        self.contract = contract
@ -14,6 +15,7 @@ class Issue:
        self.description = description
        self.type = _type
        self.debug = debug
+        self.swc_id = swc_id
        self.filename = None
        self.code = None
        self.lineno = None
@ -22,7 +24,8 @@ class Issue:
    @property
    def as_dict(self):

-        issue = {'title': self.title, 'contract': self.contract, 'description': self.description, 'function': self.function, 'type': self.type, 'address': self.address, 'debug': self.debug}
+        issue = {'title': self.title, 'swc_id': self.swc_id, 'contract': self.contract, 'description': self.description,
+                 'function': self.function, 'type': self.type, 'address': self.address, 'debug': self.debug}

        if self.filename and self.lineno:
            issue['filename'] = self.filename
@ -40,6 +43,7 @@ class Issue:
            self.code = codeinfo.code
            self.lineno = codeinfo.lineno

+
 class Report:
    environment = Environment(loader=PackageLoader('mythril.analysis'), trim_blocks=True)

--- a/mythril/analysis/swc_data.py
+++ b/mythril/analysis/swc_data.py
@ -0,0 +1,25 @@
+DEFAULT_FUNCTION_VISIBILITY = '100'
+INTEGER_OVERFLOW_AND_UNDERFLOW = '101'
+OUTDATED_COMPILER_VERSION = '102'
+FLOATING_PRAGMA = '103'
+UNCHECKED_RET_VAL = '104'
+UNPROTECTED_ETHER_WITHDRAWAL = '105'
+UNPROTECTED_SELFDESTRUCT = '106'
+REENTRANCY = '107'
+DEFAULT_STATE_VARIABLE_VISIBILITY = '108'
+UNINITIALIZED_STORAGE_POINTER = '109'
+ASSERT_VIOLATION = '110'
+DEPRICATED_FUNCTIONS_USAGE = '111'
+DELEGATECALL_TO_UNTRUSTED_CONTRACT = '112'
+MULTIPLE_SENDS = '113'
+TX_ORDER_DEPENDENCE = '114'
+TX_ORIGIN_USAGE = '115'
+TIMESTAMP_DEPENDENCE = '116'
+# TODO: SWC ID 116 is missing, Add it if it's added to the https://github.com/SmartContractSecurity/SWC-registry
+INCORRECT_CONSTRUCTOR_NAME = '118'
+SHADOWING_STATE_VARIABLES = '119'
+WEAK_RANDOMNESS = '120'
+SIGNATURE_REPLAY = '121'
+IMPROPER_VERIFICATION_BASED_ON_MSG_SENDER = '122'
+
+PREDICTABLE_VARS_DEPENDENCE = 'N/A'    # TODO: Add the swc id when this is added to the SWC Registry
--- a/mythril/analysis/symbolic.py
+++ b/mythril/analysis/symbolic.py
@ -9,9 +9,9 @@ from mythril.laser.ethereum.strategy.basic import DepthFirstSearchStrategy, Brea

 class SymExecWrapper:

-    '''
+    """
    Wrapper class for the LASER Symbolic virtual machine. Symbolically executes the code and does a bit of pre-analysis for convenience.
-    '''
+    """

    def __init__(self, contract, address, strategy, dynloader=None, max_depth=22,
                 execution_timeout=None, create_timeout=None):
@ -67,7 +67,7 @@ class SymExecWrapper:
                                # ignore prebuilts
                                continue

-                        if (meminstart.type == VarType.CONCRETE and meminsz.type == VarType.CONCRETE):
+                        if meminstart.type == VarType.CONCRETE and meminsz.type == VarType.CONCRETE:
                            self.calls.append(Call(self.nodes[key], state, state_index, op, to, gas, value, state.mstate.memory[meminstart.val:meminsz.val * 4]))
                        else:
                            self.calls.append(Call(self.nodes[key], state, state_index, op, to, gas, value))
@ -105,7 +105,7 @@ class SymExecWrapper:
                taint = True

                for constraint in s.node.constraints:
-                    if ("caller" in str(constraint)):
+                    if "caller" in str(constraint):
                        taint = False
                        break

--- a/mythril/analysis/templates/report_as_markdown.jinja2
+++ b/mythril/analysis/templates/report_as_markdown.jinja2
@ -3,7 +3,7 @@
 {% for issue in issues %}

 ## {{ issue.title }}
-
+- SWC ID: {{ issue.swc_id }}
 - Type: {{ issue.type }}
 - Contract: {{ issue.contract | default("Unknown") }}
 - Function name: `{{ issue.function }}`
--- a/mythril/analysis/templates/report_as_text.jinja2
+++ b/mythril/analysis/templates/report_as_text.jinja2
@ -1,6 +1,7 @@
 {% if issues %}
 {% for issue in issues %}
 ==== {{ issue.title }} ====
+SWC ID: {{ issue.swc_id }}
 Type: {{ issue.type }}
 Contract: {{ issue.contract | default("Unknown") }}
 Function name: {{ issue.function }}
--- a/mythril/analysis/traceexplore.py
+++ b/mythril/analysis/traceexplore.py
@ -81,7 +81,7 @@ def get_serializable_statespace(statespace):

    for edge in statespace.edges:

-        if (edge.condition is None):
+        if edge.condition is None:
            label = ""
        else:

--- a/mythril/ether/asm.py
+++ b/mythril/ether/asm.py
@ -42,9 +42,7 @@ def easm_to_instruction_list(easm):
            # Invalid code line
            continue

-        instruction = {}
-
-        instruction['opcode'] = m.group(1)
+        instruction = {'opcode': m.group(1)}

        if m.group(2):
            instruction['argument'] = m.group(2)[2:]
@ -82,7 +80,7 @@ def find_opcode_sequence(pattern, instruction_list):
                    matched = False
                    break

-            if (matched):
+            if matched:
                match_indexes.append(i)

    return match_indexes
@ -101,12 +99,10 @@ def disassemble(bytecode):

    while addr < length:

-        instruction = {}
-
-        instruction['address'] = addr
+        instruction = {'address': addr}

        try:
-            if (sys.version_info > (3, 0)):
+            if sys.version_info > (3, 0):
                opcode = opcodes[bytecode[addr]]
            else:
                opcode = opcodes[ord(bytecode[addr])]
--- a/mythril/ether/ethcontract.py
+++ b/mythril/ether/ethcontract.py
@ -7,15 +7,16 @@ import re
 class ETHContract(persistent.Persistent):

    def __init__(self, code, creation_code="", name="Unknown", enable_online_lookup=True):
-
-        self.creation_code = creation_code
-        self.name = name
-
+        
        # Workaround: We currently do not support compile-time linking.
        # Dynamic contract addresses of the format __[contract-name]_____________ are replaced with a generic address
+        # Apply this for creation_code & code

+        creation_code = re.sub(r'(_+.*_+)', 'aa' * 20, creation_code)
        code = re.sub(r'(_+.*_+)', 'aa' * 20, code)

+        self.creation_code = creation_code
+        self.name = name
        self.code = code
        self.disassembly = Disassembly(code, enable_online_lookup=enable_online_lookup)
        self.creation_disassembly = Disassembly(creation_code, enable_online_lookup=enable_online_lookup)
@ -49,7 +50,7 @@ class ETHContract(persistent.Persistent):

            m = re.match(r'^code#([a-zA-Z0-9\s,\[\]]+)#', token)

-            if (m):
+            if m:
                if easm_code is None:
                    easm_code = self.get_easm()

@ -59,7 +60,7 @@ class ETHContract(persistent.Persistent):

            m = re.match(r'^func#([a-zA-Z0-9\s_,(\\)\[\]]+)#$', token)

-            if (m):
+            if m:

                sign_hash = "0x" + utils.sha3(m.group(1))[:4].hex()

--- a/mythril/ether/evm.py
+++ b/mythril/ether/evm.py
@ -47,13 +47,13 @@ def trace(code, calldata = ""):

 			m = re.match(r'.*stack=(\[.*?\])', line)
 				
-			if (m):
+			if m:

 				stackitems = re.findall(r'b\'(\d+)\'', m.group(1))

-				stack = "[";
+				stack = "["

-				if (len(stackitems)): 
+				if len(stackitems):

 					for i in range(0, len(stackitems) - 1):
 						stack += hex(int(stackitems[i]))	+ ", "
@ -65,7 +65,7 @@ def trace(code, calldata = ""):
 			else:
 				stack = "[]"

-			if (re.match(r'^PUSH.*', op)):
+			if re.match(r'^PUSH.*', op):
 				val = re.search(r'pushvalue=(\d+)', line).group(1)
 				pushvalue = hex(int(val))
 				trace.append({'pc': pc, 'op': op, 'stack': stack, 'pushvalue': pushvalue})
--- a/mythril/ether/util.py
+++ b/mythril/ether/util.py
@ -10,7 +10,7 @@ import json

 def safe_decode(hex_encoded_string):

-    if (hex_encoded_string.startswith("0x")):
+    if hex_encoded_string.startswith("0x"):
        return bytes.fromhex(hex_encoded_string[2:])
    else:
        return bytes.fromhex(hex_encoded_string)
@ -18,10 +18,17 @@ def safe_decode(hex_encoded_string):

 def get_solc_json(file, solc_binary="solc", solc_args=None):

-    cmd = [solc_binary, "--combined-json", "bin,bin-runtime,srcmap,srcmap-runtime", '--allow-paths', "."]
+    cmd = [solc_binary, "--combined-json", "bin,bin-runtime,srcmap,srcmap-runtime"]

    if solc_args:
-        cmd.extend(solc_args.split(" "))
+        cmd.extend(solc_args.split())
+
+    if not "--allow-paths" in cmd:
+        cmd.extend(["--allow-paths", "."])
+    else:
+        for i, arg in enumerate(cmd):
+            if arg == "--allow-paths":
+                cmd[i + 1] += ",."

    cmd.append(file)

--- a/mythril/interfaces/cli.py
+++ b/mythril/interfaces/cli.py
@ -5,7 +5,7 @@
   http://www.github.com/ConsenSys/mythril
 """

-import logging
+import logging, coloredlogs
 import json
 import sys
 import argparse
@ -103,7 +103,10 @@ def main():

    if args.v:
        if 0 <= args.v < 3:
-            logging.basicConfig(level=[logging.NOTSET, logging.INFO, logging.DEBUG][args.v])
+            coloredlogs.install(
+                fmt='%(name)s[%(process)d] %(levelname)s %(message)s',
+                level=[logging.NOTSET, logging.INFO, logging.DEBUG][args.v]
+            )
        else:
            exit_with_error(args.outform, "Invalid -v value, you can find valid values in usage")

--- a/mythril/laser/ethereum/evm_exceptions.py
+++ b/mythril/laser/ethereum/evm_exceptions.py
@ -12,3 +12,7 @@ class StackOverflowException(VmException):

 class InvalidJumpDestination(VmException):
    pass
+
+
+class InvalidInstruction(VmException):
+    pass
--- a/mythril/laser/ethereum/instructions.py
+++ b/mythril/laser/ethereum/instructions.py
@ -6,15 +6,16 @@ from ethereum import utils
 from z3 import Extract, UDiv, simplify, Concat, ULT, UGT, BitVecNumRef, Not, \
    is_false, is_expr, ExprRef, URem, SRem, BitVec, Solver, is_true, BitVecVal, If, BoolRef, Or

+import mythril.laser.ethereum.natives as natives
 import mythril.laser.ethereum.util as helper
 from mythril.laser.ethereum import util
 from mythril.laser.ethereum.call import get_call_parameters
+from mythril.laser.ethereum.evm_exceptions import VmException, StackUnderflowException, InvalidJumpDestination, \
+    InvalidInstruction
+from mythril.laser.ethereum.keccak import KeccakFunctionManager
 from mythril.laser.ethereum.state import GlobalState, CalldataType
-import mythril.laser.ethereum.natives as natives
 from mythril.laser.ethereum.transaction import MessageCallTransaction, TransactionStartSignal, \
    ContractCreationTransaction
-from mythril.laser.ethereum.evm_exceptions import VmException, StackUnderflowException, InvalidJumpDestination
-from mythril.laser.ethereum.keccak import KeccakFunctionManager

 TT256 = 2 ** 256
 TT256M1 = 2 ** 256 - 1
@ -778,7 +779,8 @@ class Instruction:
            
            return self._sload_helper(global_state, str(index))

-    def _sload_helper(self, global_state, index, constraints=None):
+    @staticmethod
+    def _sload_helper(global_state, index, constraints=None):
        try:
            data = global_state.environment.active_account.storage[index]
        except KeyError:
@ -791,8 +793,8 @@ class Instruction:
        global_state.mstate.stack.append(data)
        return [global_state]

-
-    def _get_constraints(self, keccak_keys, this_key, argument):
+    @staticmethod
+    def _get_constraints(keccak_keys, this_key, argument):
        global keccak_function_manager
        for keccak_key in keccak_keys:
            if keccak_key == this_key:
@ -842,7 +844,8 @@ class Instruction:

            return self._sstore_helper(global_state, str(index), value)

-    def _sstore_helper(self, global_state, index, value, constraint=None):
+    @staticmethod
+    def _sstore_helper(global_state, index, value, constraint=None):
        try:
            global_state.environment.active_account = deepcopy(global_state.environment.active_account)
            global_state.accounts[
@ -1004,11 +1007,12 @@ class Instruction:

    @StateTransition()
    def assert_fail_(self, global_state):
-        return []
+        # 0xfe: designated invalid opcode
+        raise InvalidInstruction

    @StateTransition()
    def invalid_(self, global_state):
-        return []
+        raise InvalidInstruction

    @StateTransition()
    def stop_(self, global_state):
--- a/mythril/laser/ethereum/state.py
+++ b/mythril/laser/ethereum/state.py
@ -135,7 +135,9 @@ class MachineStack(list):
    """
    STACK_LIMIT = 1024

-    def __init__(self, default_list=[]):
+    def __init__(self, default_list=None):
+        if default_list is None:
+            default_list = []
        super(MachineStack, self).__init__(default_list)

    def append(self, element):
--- a/mythril/laser/ethereum/svm.py
+++ b/mythril/laser/ethereum/svm.py
@ -124,8 +124,19 @@ class LaserEVM:
            new_global_states = Instruction(op_code, self.dynamic_loader).evaluate(global_state)

        except VmException as e:
-            logging.debug("Encountered a VmException, ending path: `{}`".format(str(e)))
-            new_global_states = []
+            transaction, return_global_state = global_state.transaction_stack.pop()
+
+            if return_global_state is None:
+                # In this case we don't put an unmodified world state in the open_states list Since in the case of an
+                #  exceptional halt all changes should be discarded, and this world state would not provide us with a
+                #  previously unseen world state
+                logging.debug("Encountered a VmException, ending path: `{}`".format(str(e)))
+                new_global_states = []
+            else:
+                # First execute the post hook for the transaction ending instruction
+                self._execute_post_hook(op_code, [global_state])
+                new_global_states = self._end_message_call(return_global_state, global_state,
+                                                           revert_changes=True, return_data=None)

        except TransactionStartSignal as e:
            # Setup new global state
@ -149,25 +160,32 @@ class LaserEVM:
                # First execute the post hook for the transaction ending instruction
                self._execute_post_hook(op_code, [e.global_state])

-                # Resume execution of the transaction initializing instruction
-                op_code = return_global_state.environment.code.instruction_list[return_global_state.mstate.pc]['opcode']
+                new_global_states = self._end_message_call(return_global_state, global_state,
+                                                           revert_changes=False, return_data=transaction.return_data)

-                # Set execution result in the return_state
-                return_global_state.last_return_data = transaction.return_data
-                return_global_state.world_state = copy(global_state.world_state)
-                return_global_state.environment.active_account = \
-                    global_state.accounts[return_global_state.environment.active_account.address]
+        self._execute_post_hook(op_code, new_global_states)

-                # Execute the post instruction handler
-                new_global_states = Instruction(op_code, self.dynamic_loader).evaluate(return_global_state, True)
+        return new_global_states, op_code

-                # In order to get a nice call graph we need to set the nodes here
-                for state in new_global_states:
-                    state.node = global_state.node
+    def _end_message_call(self, return_global_state, global_state, revert_changes=False, return_data=None):
+        # Resume execution of the transaction initializing instruction
+        op_code = return_global_state.environment.code.instruction_list[return_global_state.mstate.pc]['opcode']

-        self._execute_post_hook(op_code, new_global_states)
+        # Set execution result in the return_state
+        return_global_state.last_return_data = return_data
+        if not revert_changes:
+            return_global_state.world_state = copy(global_state.world_state)
+            return_global_state.environment.active_account = \
+                global_state.accounts[return_global_state.environment.active_account.address]

-        return new_global_states, op_code
+        # Execute the post instruction handler
+        new_global_states = Instruction(op_code, self.dynamic_loader).evaluate(return_global_state, True)
+
+        # In order to get a nice call graph we need to set the nodes here
+        for state in new_global_states:
+            state.node = global_state.node
+
+        return new_global_states

    def _measure_coverage(self, global_state):
        code = global_state.environment.code.bytecode
--- a/mythril/laser/ethereum/taint_analysis.py
+++ b/mythril/laser/ethereum/taint_analysis.py
@ -82,7 +82,7 @@ class TaintRunner:
    """

    @staticmethod
-    def execute(statespace, node, state, initial_stack=[]):
+    def execute(statespace, node, state, initial_stack=None):
        """
        Runs taint analysis on the statespace
        :param statespace: symbolic statespace to run taint analysis on
@ -91,6 +91,8 @@ class TaintRunner:
        :param stack_indexes: stack indexes to introduce taint
        :return: TaintResult object containing analysis results
        """
+        if initial_stack is None:
+            initial_stack = []
        result = TaintResult()
        transaction_stack_length = len(node.states[0].transaction_stack)
        # Build initial current_node
@ -107,7 +109,8 @@ class TaintRunner:
            records = TaintRunner.execute_node(node, record, index)

            result.add_records(records)
-
+            if len(records) == 0:          # continue if there is no record to work on
+                continue
            children = TaintRunner.children(node, statespace, environment, transaction_stack_length)
            for child in children:
                current_nodes.append((child, records[-1], 0))
--- a/mythril/laser/ethereum/util.py
+++ b/mythril/laser/ethereum/util.py
@ -16,7 +16,7 @@ def sha3(seed):

 def safe_decode(hex_encoded_string):

-    if (hex_encoded_string.startswith("0x")):
+    if hex_encoded_string.startswith("0x"):
        return bytes.fromhex(hex_encoded_string[2:])
    else:
        return bytes.fromhex(hex_encoded_string)
@ -99,7 +99,7 @@ def concrete_int_to_bytes(val):

    # logging.debug("concrete_int_to_bytes " + str(val))

-    if (type(val) == int):
+    if type(val) == int:
        return val.to_bytes(32, byteorder='big')

    return (simplify(val).as_long()).to_bytes(32, byteorder='big')
--- a/mythril/leveldb/accountindexing.py
+++ b/mythril/leveldb/accountindexing.py
@ -34,9 +34,9 @@ class CountableList(object):


 class ReceiptForStorage(rlp.Serializable):
-    '''
+    """
    Receipt format stored in levelDB
-    '''
+    """

    fields = [
        ('state_root', binary),
@ -50,9 +50,9 @@ class ReceiptForStorage(rlp.Serializable):


 class AccountIndexer(object):
-    '''
+    """
    Updates address index
-    '''
+    """

    def __init__(self, ethDB):
        self.db = ethDB
@ -62,9 +62,9 @@ class AccountIndexer(object):
        self.updateIfNeeded()

    def get_contract_by_hash(self, contract_hash):
-        '''
+        """
        get mapped address by its hash, if not found try indexing
-        '''
+        """
        address = self.db.reader._get_address_by_hash(contract_hash)
        if address is not None:
            return address
@ -74,9 +74,9 @@ class AccountIndexer(object):
        return self.db.reader._get_address_by_hash(contract_hash)

    def _process(self, startblock):
-        '''
+        """
        Processesing method
-        '''
+        """
        logging.debug("Processing blocks %d to %d" % (startblock, startblock + BATCH_SIZE))

        addresses = []
@ -96,9 +96,9 @@ class AccountIndexer(object):
        return addresses

    def updateIfNeeded(self):
-        '''
+        """
        update address index
-        '''
+        """
        headBlock = self.db.reader._get_head_block()
        if headBlock is not None:
            # avoid restarting search if head block is same & we already initialized
@ -128,7 +128,7 @@ class AccountIndexer(object):
        count = 0
        processed = 0

-        while (blockNum <= self.lastBlock):
+        while blockNum <= self.lastBlock:
            # leveldb cannot be accessed on multiple processes (not even readonly)
            # multithread version performs significantly worse than serial
            try:
@ -154,4 +154,4 @@ class AccountIndexer(object):
            self.db.writer._set_last_indexed_number(self.lastProcessedBlock)

        print("Finished indexing")
-        self.lastBlock = self.lastProcessedBlock
+        self.lastBlock = self.lastProcessedBlock
--- a/mythril/leveldb/client.py
+++ b/mythril/leveldb/client.py
@ -26,23 +26,23 @@ address_mapping_head_key = b'accountMapping'  # head (latest) number of indexed


 def _format_block_number(number):
-    '''
+    """
    formats block number to uint64 big endian
-    '''
+    """
    return utils.zpad(utils.int_to_big_endian(number), 8)


 def _encode_hex(v):
-    '''
+    """
    encodes hash as hex
-    '''
+    """
    return '0x' + utils.encode_hex(v)


 class LevelDBReader(object):
-    '''
+    """
    level db reading interface, can be used with snapshot
-    '''
+    """

    def __init__(self, db):
        self.db = db
@ -50,34 +50,34 @@ class LevelDBReader(object):
        self.head_state = None

    def _get_head_state(self):
-        '''
+        """
        gets head state
-        '''
+        """
        if not self.head_state:
            root = self._get_head_block().state_root
            self.head_state = State(self.db, root)
        return self.head_state

    def _get_account(self, address):
-        '''
+        """
        gets account by address
-        '''
+        """
        state = self._get_head_state()
        account_address = binascii.a2b_hex(utils.remove_0x_head(address))
        return state.get_and_cache_account(account_address)

    def _get_block_hash(self, number):
-        '''
+        """
        gets block hash by block number
-        '''
+        """
        num = _format_block_number(number)
        hash_key = header_prefix + num + num_suffix
        return self.db.get(hash_key)

    def _get_head_block(self):
-        '''
+        """
        gets head block header
-        '''
+        """
        if not self.head_block_header:
            hash = self.db.get(head_header_key)
            num = self._get_block_number(hash)
@ -91,38 +91,38 @@ class LevelDBReader(object):
        return self.head_block_header

    def _get_block_number(self, hash):
-        '''
+        """
        gets block number by hash
-        '''
+        """
        number_key = block_hash_prefix + hash
        return self.db.get(number_key)

    def _get_block_header(self, hash, num):
-        '''
+        """
        get block header by block header hash & number
-        '''
+        """
        header_key = header_prefix + num + hash
        block_header_data = self.db.get(header_key)
        header = rlp.decode(block_header_data, sedes=BlockHeader)
        return header

    def _get_address_by_hash(self, hash):
-        '''
+        """
        get mapped address by its hash
-        '''
+        """
        address_key = address_prefix + hash
        return self.db.get(address_key)

    def _get_last_indexed_number(self):
-        '''
+        """
        latest indexed block number
-        '''
+        """
        return self.db.get(address_mapping_head_key)

    def _get_block_receipts(self, hash, num):
-        '''
+        """
        get block transaction receipts by block header hash & number
-        '''
+        """
        number = _format_block_number(num)
        receipts_key = block_receipts_prefix + number + hash
        receipts_data = self.db.get(receipts_key)
@ -131,44 +131,44 @@ class LevelDBReader(object):


 class LevelDBWriter(object):
-    '''
+    """
    level db writing interface
-    '''
+    """

    def __init__(self, db):
        self.db = db
        self.wb = None

    def _set_last_indexed_number(self, number):
-        '''
+        """
        sets latest indexed block number
-        '''
+        """
        return self.db.put(address_mapping_head_key, _format_block_number(number))

    def _start_writing(self):
-        '''
+        """
        start writing a batch
-        '''
+        """
        self.wb = self.db.write_batch()

    def _commit_batch(self):
-        '''
+        """
        commit batch
-        '''
+        """
        self.wb.write()

    def _store_account_address(self, address):
-        '''
+        """
        get block transaction receipts by block header hash & number
-        '''
+        """
        address_key = address_prefix + utils.sha3(address)
        self.wb.put(address_key, address)


 class EthLevelDB(object):
-    '''
+    """
    Go-Ethereum LevelDB client class
-    '''
+    """

    def __init__(self, path):
        self.path = path
@ -177,9 +177,9 @@ class EthLevelDB(object):
        self.writer = LevelDBWriter(self.db)

    def get_contracts(self):
-        '''
+        """
        iterate through all contracts
-        '''
+        """
        for account in self.reader._get_head_state().get_all_accounts():
            if account.code is not None:
                code = _encode_hex(account.code)
@ -188,9 +188,9 @@ class EthLevelDB(object):
                yield contract, account.address, account.balance

    def search(self, expression, callback_func):
-        '''
+        """
        searches through all contract accounts
-        '''
+        """
        cnt = 0
        indexer = AccountIndexer(self)

@ -217,9 +217,9 @@ class EthLevelDB(object):
                logging.info("Searched %d contracts" % cnt)

    def contract_hash_to_address(self, hash):
-        '''
+        """
        tries to find corresponding account address
-        '''
+        """

        address_hash = binascii.a2b_hex(utils.remove_0x_head(hash))
        indexer = AccountIndexer(self)
@ -227,17 +227,17 @@ class EthLevelDB(object):
        return _encode_hex(indexer.get_contract_by_hash(address_hash))

    def eth_getBlockHeaderByNumber(self, number):
-        '''
+        """
        gets block header by block number
-        '''
+        """
        hash = self.reader._get_block_hash(number)
        block_number = _format_block_number(number)
        return self.reader._get_block_header(hash, block_number)

    def eth_getBlockByNumber(self, number):
-        '''
+        """
        gets block body by block number
-        '''
+        """
        block_hash = self.reader._get_block_hash(number)
        block_number = _format_block_number(number)
        body_key = body_prefix + block_number + block_hash
@ -246,22 +246,22 @@ class EthLevelDB(object):
        return body

    def eth_getCode(self, address):
-        '''
+        """
        gets account code
-        '''
+        """
        account = self.reader._get_account(address)
        return _encode_hex(account.code)

    def eth_getBalance(self, address):
-        '''
+        """
        gets account balance
-        '''
+        """
        account = self.reader._get_account(address)
        return account.balance

    def eth_getStorageAt(self, address, position):
-        '''
+        """
        gets account storage data at position
-        '''
+        """
        account = self.reader._get_account(address)
        return _encode_hex(utils.zpad(utils.encode_int(account.get_storage_data(position)), 32))
--- a/mythril/leveldb/eth_db.py
+++ b/mythril/leveldb/eth_db.py
@ -3,27 +3,27 @@ from ethereum.db import BaseDB


 class ETH_DB(BaseDB):
-    '''
+    """
    adopts pythereum BaseDB using plyvel
-    '''
+    """

    def __init__(self, path):
        self.db = plyvel.DB(path)

    def get(self, key):
-        '''
+        """
        gets value for key
-        '''
+        """
        return self.db.get(key)

    def put(self, key, value):
-        '''
+        """
        puts value for key
-        '''
+        """
        self.db.put(key, value)

    def write_batch(self):
-        '''
+        """
        start writing a batch
-        '''
-        return self.db.write_batch()
+        """
+        return self.db.write_batch()
--- a/mythril/leveldb/state.py
+++ b/mythril/leveldb/state.py
@ -32,9 +32,9 @@ STATE_DEFAULTS = {


 class Account(rlp.Serializable):
-    '''
+    """
    adjusted account from ethereum.state
-    '''
+    """

    fields = [
        ('nonce', big_endian_int),
@ -57,15 +57,15 @@ class Account(rlp.Serializable):

    @property
    def code(self):
-        '''
+        """
        code rlp data
-        '''
+        """
        return self.db.get(self.code_hash)

    def get_storage_data(self, key):
-        '''
+        """
        get storage data
-        '''
+        """
        if key not in self.storage_cache:
            v = self.storage_trie.get(utils.encode_int32(key))
            self.storage_cache[key] = utils.big_endian_to_int(
@ -74,24 +74,24 @@ class Account(rlp.Serializable):

    @classmethod
    def blank_account(cls, db, address, initial_nonce=0):
-        '''
+        """
        creates a blank account
-        '''
+        """
        db.put(BLANK_HASH, b'')
        o = cls(initial_nonce, 0, trie.BLANK_ROOT, BLANK_HASH, db, address)
        o.existent_at_start = False
        return o

    def is_blank(self):
-        '''
+        """
        checks if is a blank account
-        '''
+        """
        return self.nonce == 0 and self.balance == 0 and self.code_hash == BLANK_HASH

-class State():
-    '''
+class State:
+    """
    adjusted state from ethereum.state
-    '''
+    """

    def __init__(self, db, root):
        self.db = db
@ -101,9 +101,9 @@ class State():
        self.cache = {}

    def get_and_cache_account(self, address):
-        '''
+        """
        gets and caches an account for an addres, creates blank if not found
-        '''
+        """
        if address in self.cache:
            return self.cache[address]
        rlpdata = self.secure_trie.get(address)
@ -120,9 +120,9 @@ class State():
        return o

    def get_all_accounts(self):
-        '''
+        """
        iterates through trie to and yields non-blank leafs as accounts
-        '''
+        """
        for address_hash, rlpdata in self.secure_trie.trie.iter_branch():
            if rlpdata != trie.BLANK_NODE:
-                yield rlp.decode(rlpdata, Account, db=self.db, address=address_hash)
+                yield rlp.decode(rlpdata, Account, db=self.db, address=address_hash)
--- a/mythril/mythril.py
+++ b/mythril/mythril.py
@ -103,7 +103,8 @@ class Mythril(object):

        self.contracts = []  # loaded contracts

-    def _init_mythril_dir(self):
+    @staticmethod
+    def _init_mythril_dir():
        try:
            mythril_dir = os.environ['MYTHRIL_DIR']
        except KeyError:
@ -179,7 +180,8 @@ class Mythril(object):
    def analyze_truffle_project(self, *args, **kwargs):
        return analyze_truffle_project(self.sigs, *args, **kwargs)  # just passthru by passing signatures for now

-    def _init_solc_binary(self, version):
+    @staticmethod
+    def _init_solc_binary(version):
        # Figure out solc binary and version
        # Only proper versions are supported. No nightlies, commits etc (such as available in remix)

@ -317,7 +319,7 @@ class Mythril(object):

            try:
                # import signatures from solidity source
-                self.sigs.import_from_solidity_source(file)
+                self.sigs.import_from_solidity_source(file, solc_binary=self.solc_binary, solc_args=self.solc_args)
                # Save updated function signatures
                self.sigs.write()  # dump signatures to disk (previously opened file or default location)

@ -382,7 +384,9 @@ class Mythril(object):

        return report

-    def get_state_variable_from_storage(self, address, params=[]):
+    def get_state_variable_from_storage(self, address, params=None):
+        if params is None:
+            params = []
        (position, length, mappings) = (0, 1, [])
        try:
            if params[0] == "mapping":
@ -433,7 +437,8 @@ class Mythril(object):
            raise CriticalError("Could not connect to RPC server. Make sure that your node is running and that RPC parameters are set correctly.")
        return '\n'.join(outtxt)

-    def disassemble(self, contract):
+    @staticmethod
+    def disassemble(contract):
        return contract.get_easm()

    @staticmethod
--- a/mythril/rpc/base_client.py
+++ b/mythril/rpc/base_client.py
@ -20,64 +20,64 @@ class BaseClient(object):
        pass

    def eth_coinbase(self):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_coinbase

        TESTED
-        '''
+        """
        return self._call('eth_coinbase')

    def eth_blockNumber(self):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_blocknumber

        TESTED
-        '''
+        """
        return hex_to_dec(self._call('eth_blockNumber'))

    def eth_getBalance(self, address=None, block=BLOCK_TAG_LATEST):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getbalance

        TESTED
-        '''
+        """
        address = address or self.eth_coinbase()
        block = validate_block(block)
        return hex_to_dec(self._call('eth_getBalance', [address, block]))

    def eth_getStorageAt(self, address=None, position=0, block=BLOCK_TAG_LATEST):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getstorageat

        TESTED
-        '''
+        """
        block = validate_block(block)
        return self._call('eth_getStorageAt', [address, hex(position), block])

    def eth_getCode(self, address, default_block=BLOCK_TAG_LATEST):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getcode

        NEEDS TESTING
-        '''
+        """
        if isinstance(default_block, str):
            if default_block not in BLOCK_TAGS:
                raise ValueError
        return self._call('eth_getCode', [address, default_block])

    def eth_getBlockByNumber(self, block=BLOCK_TAG_LATEST, tx_objects=True):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getblockbynumber

        TESTED
-        '''
+        """
        block = validate_block(block)
        return self._call('eth_getBlockByNumber', [block, tx_objects])

    def eth_getTransactionReceipt(self, tx_hash):
-        '''
+        """
        https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_gettransactionreceipt

        TESTED
-        '''
+        """
        return self._call('eth_getTransactionReceipt', [tx_hash])
--- a/mythril/rpc/client.py
+++ b/mythril/rpc/client.py
@ -17,9 +17,9 @@ JSON_MEDIA_TYPE = 'application/json'
 This code is adapted from: https://github.com/ConsenSys/ethjsonrpc
 '''
 class EthJsonRpc(BaseClient):
-    '''
+    """
    Ethereum JSON-RPC client class
-    '''
+    """

    def __init__(self, host='localhost', port=GETH_DEFAULT_RPC_PORT, tls=False):
        self.host = host
--- a/mythril/rpc/utils.py
+++ b/mythril/rpc/utils.py
@ -2,17 +2,17 @@ from .constants import BLOCK_TAGS


 def hex_to_dec(x):
-    '''
+    """
    Convert hex to decimal
-    '''
+    """
    return int(x, 16)


 def clean_hex(d):
-    '''
+    """
    Convert decimal to hex and remove the "L" suffix that is appended to large
    numbers
-    '''
+    """
    return hex(d).rstrip('L')

 def validate_block(block):
@ -25,14 +25,14 @@ def validate_block(block):


 def wei_to_ether(wei):
-    '''
+    """
    Convert wei to ether
-    '''
+    """
    return 1.0 * wei / 10**18


 def ether_to_wei(ether):
-    '''
+    """
    Convert ether to wei
-    '''
+    """
    return ether * 10**18
--- a/mythril/support/loader.py
+++ b/mythril/support/loader.py
@ -37,7 +37,7 @@ class DynLoader:

        m = re.match(r'^(0x[0-9a-fA-F]{40})$', dependency_address)

-        if (m):
+        if m:
            dependency_address = m.group(1)

        else:
@ -47,7 +47,7 @@ class DynLoader:

        code = self.eth.eth_getCode(dependency_address)

-        if (code == "0x"):
+        if code == "0x":
            return None
        else:
            return Disassembly(code)
--- a/mythril/support/signatures.py
+++ b/mythril/support/signatures.py
@ -111,6 +111,8 @@ class SignatureDb(object):
        :return: self
        """
        path = path or self.signatures_file
+        directory = os.path.split(path)[0]
+
        if sync and os.path.exists(path):
            # reload and save if file exists
            with open(path, "r") as f:
@ -122,7 +124,10 @@ class SignatureDb(object):

            sigs.update(self.signatures)  # reload file and merge cached sigs into what we load from file
            self.signatures = sigs
-        
+
+        if directory and not os.path.exists(directory):
+            os.makedirs(directory)         # create folder structure if not existS
+
        if not os.path.exists(path):       # creates signatures.json file if it doesn't exist
            open(path, "w").close()

@ -172,13 +177,13 @@ class SignatureDb(object):
        """
        return self.get(sighash=item)

-    def import_from_solidity_source(self, file_path):
+    def import_from_solidity_source(self, file_path, solc_binary="solc", solc_args=None):
        """
        Import Function Signatures from solidity source files
        :param file_path: solidity source code file path
        :return: self
        """
-        self.signatures.update(SignatureDb.get_sigs_from_file(file_path))
+        self.signatures.update(SignatureDb.get_sigs_from_file(file_path, solc_binary=solc_binary, solc_args=solc_args))
        return self

    @staticmethod
@ -201,13 +206,15 @@ class SignatureDb(object):
                                                                                       proxies=proxies))

    @staticmethod
-    def get_sigs_from_file(file_name):
+    def get_sigs_from_file(file_name, solc_binary="solc", solc_args=None):
        """
        :param file_name: accepts a filename
        :return: their signature mappings
        """
        sigs = {}
-        cmd = ["solc", "--hashes", file_name]
+        cmd = [solc_binary, "--hashes", file_name]
+        if solc_args:
+            cmd.extend(solc_args.split())
        try:
            p = Popen(cmd, stdout=PIPE, stderr=PIPE)
            stdout, stderr = p.communicate()
--- a/requirements.txt
+++ b/requirements.txt
@ -1,3 +1,4 @@
+coloredlogs>=10.0
 configparser>=3.5.0
 coverage
 eth_abi>=1.0.0
--- a/setup.py
+++ b/setup.py
@ -82,6 +82,7 @@ setup(
    packages=find_packages(exclude=['contrib', 'docs', 'tests']),

    install_requires=[
+        'coloredlogs>=10.0',
        'ethereum>=2.3.2',
        'z3-solver>=4.5',
        'requests',
--- a/tests/laser/evm_testsuite/VMTests/vmTests/suicide.json
+++ b/tests/laser/evm_testsuite/VMTests/vmTests/suicide.json
@ -0,0 +1,51 @@
+{
+    "suicide" : {
+        "_info" : {
+            "comment" : "",
+            "filledwith" : "testeth 1.5.0.dev2-52+commit.d419e0a2",
+            "lllcversion" : "Version: 0.4.26-develop.2018.9.19+commit.785cbf40.Linux.g++",
+            "source" : "src/VMTestsFiller/vmTests/suicideFiller.json",
+            "sourceHash" : "4622c577440f9db4b3954a1de60bf2fac55886dcb0ec4ecaf906c25bc77372e7"
+        },
+        "callcreates" : [
+        ],
+        "env" : {
+            "currentCoinbase" : "0x2adc25665018aa1fe0e6bc666dac8fc2697ff9ba",
+            "currentDifficulty" : "0x0100",
+            "currentGasLimit" : "0x0f4240",
+            "currentNumber" : "0x00",
+            "currentTimestamp" : "0x01"
+        },
+        "exec" : {
+            "address" : "0x0f572e5295c57f15886f9b263e2f6d2d6c7b5ec6",
+            "caller" : "0xcd1722f3947def4cf144679da39c4c32bdc35681",
+            "code" : "0x33ff",
+            "data" : "0x",
+            "gas" : "0x0186a0",
+            "gasPrice" : "0x5af3107a4000",
+            "origin" : "0xcd1722f3947def4cf144679da39c4c32bdc35681",
+            "value" : "0x0de0b6b3a7640000"
+        },
+        "gas" : "0x01869e",
+        "logs" : "0x1dcc4de8dec75d7aab85b567b6ccd41ad312451b948a7413f0a142fd40d49347",
+        "out" : "0x",
+        "post" : {
+            "0xcd1722f3947def4cf144679da39c4c32bdc35681" : {
+                "balance" : "0x152d02c7e14af6800000",
+                "code" : "0x",
+                "nonce" : "0x00",
+                "storage" : {
+                }
+            }
+        },
+        "pre" : {
+            "0x0f572e5295c57f15886f9b263e2f6d2d6c7b5ec6" : {
+                "balance" : "0x152d02c7e14af6800000",
+                "code" : "0x33ff",
+                "nonce" : "0x00",
+                "storage" : {
+                }
+            }
+        }
+    }
+}
--- a/tests/laser/evm_testsuite/evm_test.py
+++ b/tests/laser/evm_testsuite/evm_test.py
@ -12,7 +12,7 @@ import pytest

 evm_test_dir = Path(__file__).parent / 'VMTests'

-test_types = ['vmArithmeticTest', 'vmBitwiseLogicOperation', 'vmPushDupSwapTest']
+test_types = ['vmArithmeticTest', 'vmBitwiseLogicOperation', 'vmPushDupSwapTest', 'vmTests']


 def load_test_data(designations):
--- a/tests/native_test.py
+++ b/tests/native_test.py
@ -6,13 +6,13 @@ from mythril.laser.ethereum import svm
 from tests import *


-SHA256_TEST = [ (0,False) for i in range(6)]
+SHA256_TEST = [(0, False) for _ in range(6)]

-RIPEMD160_TEST = [ (0,False) for i in range(6)]
+RIPEMD160_TEST = [(0, False) for _ in range(6)]

-ECRECOVER_TEST = [ (0,False) for i in range(9)]
+ECRECOVER_TEST = [(0, False) for _ in range(9)]

-IDENTITY_TEST = [ (0, False) for i in range(4)]
+IDENTITY_TEST = [(0, False) for _ in range(4)]

 SHA256_TEST[0] = (5555555555555555, True)     #These are Random numbers to check whether the 'if condition' is entered or not(True means entered)
 SHA256_TEST[1] = (323232325445454546, True)
@ -98,9 +98,9 @@ def _test_natives(laser_info, test_list, test_name):
    assert(success == len(test_list))


-
 class NativeTests(BaseTestCase):
-    def runTest(self):
+    @staticmethod
+    def runTest():
        disassembly = SolidityContract('./tests/native_tests.sol').disassembly
        account = Account("0x0000000000000000000000000000000000000000", disassembly)
        accounts = {account.address: account}
--- a/tests/testdata/outputs_expected/calls.sol.o.json
+++ b/tests/testdata/outputs_expected/calls.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 661, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0x5a6814ec", "title": "Message call to external contract", "type": "Informational"}, {"address": 666, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x5a6814ec", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 779, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address found at storage slot 1. This storage slot can be written to by calling the function `_function_0x2776b163`. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xd24b08cc", "title": "Message call to external contract", "type": "Warning"}, {"address": 779, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible transaction order dependence vulnerability exists in function _function_0xd24b08cc. The value or direction of the call statement is determined from a tainted storage location", "function": "_function_0xd24b08cc", "title": "Transaction order dependence", "type": "Warning"}, {"address": 784, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xd24b08cc", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 858, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0xe11f493e", "title": "Message call to external contract", "type": "Informational"}, {"address": 869, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The contract account state is changed after an external call. Consider that the called contract could re-enter the function before this state change takes place. This can lead to business logic vulnerabilities.", "function": "_function_0xe11f493e", "title": "State change after external call", "type": "Warning"}, {"address": 871, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe11f493e", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 912, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xe1d10f79", "title": "Message call to external contract", "type": "Warning"}, {"address": 918, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe1d10f79", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
+{"error": null, "issues": [{"address": 661, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0x5a6814ec", "swc_id": "107", "title": "Message call to external contract", "type": "Informational"}, {"address": 666, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x5a6814ec", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 779, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address found at storage slot 1. This storage slot can be written to by calling the function `_function_0x2776b163`. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xd24b08cc", "swc_id": "107", "title": "Message call to external contract", "type": "Warning"}, {"address": 779, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible transaction order dependence vulnerability exists in function _function_0xd24b08cc. The value or direction of the call statement is determined from a tainted storage location", "function": "_function_0xd24b08cc", "swc_id": "114", "title": "Transaction order dependence", "type": "Warning"}, {"address": 784, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xd24b08cc", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 858, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0xe11f493e", "swc_id": "107", "title": "Message call to external contract", "type": "Informational"}, {"address": 869, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The contract account state is changed after an external call. Consider that the called contract could re-enter the function before this state change takes place. This can lead to business logic vulnerabilities.", "function": "_function_0xe11f493e", "swc_id": "107", "title": "State change after external call", "type": "Warning"}, {"address": 871, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe11f493e", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 912, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xe1d10f79", "swc_id": "107", "title": "Message call to external contract", "type": "Warning"}, {"address": 918, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe1d10f79", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
--- a/tests/testdata/outputs_expected/calls.sol.o.markdown
+++ b/tests/testdata/outputs_expected/calls.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x5a6814ec`
@ -12,7 +12,7 @@
 This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x5a6814ec`
@ -23,7 +23,7 @@ This contract executes a message call to to another contract. Make sure that the
 The return value of an external call is not checked. Note that execution continue even if the called contract throws.

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xd24b08cc`
@ -34,7 +34,7 @@ The return value of an external call is not checked. Note that execution continu
 This contract executes a message call to an address found at storage slot 1. This storage slot can be written to by calling the function `_function_0x2776b163`. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.

 ## Transaction order dependence
-
+- SWC ID: 114
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xd24b08cc`
@ -45,7 +45,7 @@ This contract executes a message call to an address found at storage slot 1. Thi
 A possible transaction order dependence vulnerability exists in function _function_0xd24b08cc. The value or direction of the call statement is determined from a tainted storage location

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xd24b08cc`
@ -56,7 +56,7 @@ A possible transaction order dependence vulnerability exists in function _functi
 The return value of an external call is not checked. Note that execution continue even if the called contract throws.

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xe11f493e`
@ -67,7 +67,7 @@ The return value of an external call is not checked. Note that execution continu
 This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.

 ## State change after external call
-
+- SWC ID: 107
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xe11f493e`
@ -78,7 +78,7 @@ This contract executes a message call to to another contract. Make sure that the
 The contract account state is changed after an external call. Consider that the called contract could re-enter the function before this state change takes place. This can lead to business logic vulnerabilities.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xe11f493e`
@ -89,7 +89,7 @@ The contract account state is changed after an external call. Consider that the
 The return value of an external call is not checked. Note that execution continue even if the called contract throws.

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xe1d10f79`
@ -100,7 +100,7 @@ The return value of an external call is not checked. Note that execution continu
 This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xe1d10f79`
--- a/tests/testdata/outputs_expected/calls.sol.o.text
+++ b/tests/testdata/outputs_expected/calls.sol.o.text
@ -1,4 +1,5 @@
 ==== Message call to external contract ====
+SWC ID: 107
 Type: Informational
 Contract: Unknown
 Function name: _function_0x5a6814ec
@ -7,6 +8,7 @@ This contract executes a message call to to another contract. Make sure that the
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0x5a6814ec
@ -15,6 +17,7 @@ The return value of an external call is not checked. Note that execution continu
 --------------------

 ==== Message call to external contract ====
+SWC ID: 107
 Type: Warning
 Contract: Unknown
 Function name: _function_0xd24b08cc
@ -23,6 +26,7 @@ This contract executes a message call to an address found at storage slot 1. Thi
 --------------------

 ==== Transaction order dependence ====
+SWC ID: 114
 Type: Warning
 Contract: Unknown
 Function name: _function_0xd24b08cc
@ -31,6 +35,7 @@ A possible transaction order dependence vulnerability exists in function _functi
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0xd24b08cc
@ -39,6 +44,7 @@ The return value of an external call is not checked. Note that execution continu
 --------------------

 ==== Message call to external contract ====
+SWC ID: 107
 Type: Informational
 Contract: Unknown
 Function name: _function_0xe11f493e
@ -47,6 +53,7 @@ This contract executes a message call to to another contract. Make sure that the
 --------------------

 ==== State change after external call ====
+SWC ID: 107
 Type: Warning
 Contract: Unknown
 Function name: _function_0xe11f493e
@ -55,6 +62,7 @@ The contract account state is changed after an external call. Consider that the
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0xe11f493e
@ -63,6 +71,7 @@ The return value of an external call is not checked. Note that execution continu
 --------------------

 ==== Message call to external contract ====
+SWC ID: 107
 Type: Warning
 Contract: Unknown
 Function name: _function_0xe1d10f79
@ -71,6 +80,7 @@ This contract executes a message call to an address provided as a function argum
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0xe1d10f79
--- a/tests/testdata/outputs_expected/environments.sol.o.json
+++ b/tests/testdata/outputs_expected/environments.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 158, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `_function_0x83f12fec`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "_function_0x83f12fec", "title": "Integer Overflow", "type": "Warning"}, {"address": 278, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `_function_0x83f12fec`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "_function_0x83f12fec", "title": "Integer Overflow", "type": "Warning"}, {"address": 378, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `_function_0x83f12fec`.\nThe subtraction may result in a value < 0.", "function": "_function_0x83f12fec", "title": "Integer Underflow", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 158, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `_function_0x83f12fec`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "_function_0x83f12fec", "swc_id": "101", "title": "Integer Overflow", "type": "Warning"}, {"address": 278, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `_function_0x83f12fec`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "_function_0x83f12fec", "swc_id": "101", "title": "Integer Overflow", "type": "Warning"}, {"address": 378, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `_function_0x83f12fec`.\nThe subtraction may result in a value < 0.", "function": "_function_0x83f12fec", "swc_id": "101", "title": "Integer Underflow", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/environments.sol.o.markdown
+++ b/tests/testdata/outputs_expected/environments.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Integer Overflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0x83f12fec`
@ -13,7 +13,7 @@ A possible integer overflow exists in the function `_function_0x83f12fec`.
 The addition or multiplication may result in a value higher than the maximum representable integer.

 ## Integer Overflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0x83f12fec`
@ -25,7 +25,7 @@ A possible integer overflow exists in the function `_function_0x83f12fec`.
 The addition or multiplication may result in a value higher than the maximum representable integer.

 ## Integer Underflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0x83f12fec`
--- a/tests/testdata/outputs_expected/environments.sol.o.text
+++ b/tests/testdata/outputs_expected/environments.sol.o.text
@ -1,4 +1,5 @@
 ==== Integer Overflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: _function_0x83f12fec
@ -8,6 +9,7 @@ The addition or multiplication may result in a value higher than the maximum rep
 --------------------

 ==== Integer Overflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: _function_0x83f12fec
@ -17,6 +19,7 @@ The addition or multiplication may result in a value higher than the maximum rep
 --------------------

 ==== Integer Underflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: _function_0x83f12fec
--- a/tests/testdata/outputs_expected/ether_send.sol.o.json
+++ b/tests/testdata/outputs_expected/ether_send.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 722, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "In the function `withdrawfunds()` a non-zero amount of Ether is sent to msg.sender.\n\nThere is a check on storage index 1. This storage slot can be written to by calling the function `crowdfunding()`.", "function": "withdrawfunds()", "title": "Ether send", "type": "Warning"}, {"address": 883, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `invest()`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "invest()", "title": "Integer Overflow", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 722, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "In the function `withdrawfunds()` a non-zero amount of Ether is sent to msg.sender.\n\nThere is a check on storage index 1. This storage slot can be written to by calling the function `crowdfunding()`.", "function": "withdrawfunds()", "swc_id": "105", "title": "Ether send", "type": "Warning"}, {"address": 883, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `invest()`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "invest()", "swc_id": "101", "title": "Integer Overflow", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/ether_send.sol.o.markdown
+++ b/tests/testdata/outputs_expected/ether_send.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Ether send
-
+- SWC ID: 105
 - Type: Warning
 - Contract: Unknown
 - Function name: `withdrawfunds()`
@ -14,7 +14,7 @@ In the function `withdrawfunds()` a non-zero amount of Ether is sent to msg.send
 There is a check on storage index 1. This storage slot can be written to by calling the function `crowdfunding()`.

 ## Integer Overflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `invest()`
--- a/tests/testdata/outputs_expected/ether_send.sol.o.text
+++ b/tests/testdata/outputs_expected/ether_send.sol.o.text
@ -1,4 +1,5 @@
 ==== Ether send ====
+SWC ID: 105
 Type: Warning
 Contract: Unknown
 Function name: withdrawfunds()
@ -9,6 +10,7 @@ There is a check on storage index 1. This storage slot can be written to by call
 --------------------

 ==== Integer Overflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: invest()
--- a/tests/testdata/outputs_expected/exceptions.sol.o.json
+++ b/tests/testdata/outputs_expected/exceptions.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 446, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0x546455b5", "title": "Exception state", "type": "Informational"}, {"address": 484, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0x92dd38ea", "title": "Exception state", "type": "Informational"}, {"address": 506, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0xa08299f1", "title": "Exception state", "type": "Informational"}, {"address": 531, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0xb34c3610", "title": "Exception state", "type": "Informational"}], "success": true}
+{"error": null, "issues": [{"address": 446, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0x546455b5", "swc_id": "110", "title": "Exception state", "type": "Informational"}, {"address": 484, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0x92dd38ea", "swc_id": "110", "title": "Exception state", "type": "Informational"}, {"address": 506, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0xa08299f1", "swc_id": "110", "title": "Exception state", "type": "Informational"}, {"address": 531, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking. ", "function": "_function_0xb34c3610", "swc_id": "110", "title": "Exception state", "type": "Informational"}], "success": true}
--- a/tests/testdata/outputs_expected/exceptions.sol.o.markdown
+++ b/tests/testdata/outputs_expected/exceptions.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Exception state
-
+- SWC ID: 110
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x546455b5`
@ -12,7 +12,7 @@
 A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking.

 ## Exception state
-
+- SWC ID: 110
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x92dd38ea`
@ -23,7 +23,7 @@ A reachable exception (opcode 0xfe) has been detected. This can be caused by typ
 A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking.

 ## Exception state
-
+- SWC ID: 110
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xa08299f1`
@ -34,7 +34,7 @@ A reachable exception (opcode 0xfe) has been detected. This can be caused by typ
 A reachable exception (opcode 0xfe) has been detected. This can be caused by type errors, division by zero, out-of-bounds array access, or assert violations. This is acceptable in most situations. Note however that `assert()` should only be used to check invariants. Use `require()` for regular input checking.

 ## Exception state
-
+- SWC ID: 110
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xb34c3610`
--- a/tests/testdata/outputs_expected/exceptions.sol.o.text
+++ b/tests/testdata/outputs_expected/exceptions.sol.o.text
@ -1,4 +1,5 @@
 ==== Exception state ====
+SWC ID: 110
 Type: Informational
 Contract: Unknown
 Function name: _function_0x546455b5
@ -7,6 +8,7 @@ A reachable exception (opcode 0xfe) has been detected. This can be caused by typ
 --------------------

 ==== Exception state ====
+SWC ID: 110
 Type: Informational
 Contract: Unknown
 Function name: _function_0x92dd38ea
@ -15,6 +17,7 @@ A reachable exception (opcode 0xfe) has been detected. This can be caused by typ
 --------------------

 ==== Exception state ====
+SWC ID: 110
 Type: Informational
 Contract: Unknown
 Function name: _function_0xa08299f1
@ -23,6 +26,7 @@ A reachable exception (opcode 0xfe) has been detected. This can be caused by typ
 --------------------

 ==== Exception state ====
+SWC ID: 110
 Type: Informational
 Contract: Unknown
 Function name: _function_0xb34c3610
--- a/tests/testdata/outputs_expected/kinds_of_calls.sol.o.json
+++ b/tests/testdata/outputs_expected/kinds_of_calls.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 626, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x141f32ff", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 857, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x9b58bc26", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 1038, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xeea4c864", "title": "Message call to external contract", "type": "Warning"}, {"address": 1046, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xeea4c864", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
+{"error": null, "issues": [{"address": 626, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x141f32ff", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 857, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0x9b58bc26", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}, {"address": 1038, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.", "function": "_function_0xeea4c864", "swc_id": "107", "title": "Message call to external contract", "type": "Warning"}, {"address": 1046, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xeea4c864", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
--- a/tests/testdata/outputs_expected/kinds_of_calls.sol.o.markdown
+++ b/tests/testdata/outputs_expected/kinds_of_calls.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x141f32ff`
@ -12,7 +12,7 @@
 The return value of an external call is not checked. Note that execution continue even if the called contract throws.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x9b58bc26`
@ -23,7 +23,7 @@ The return value of an external call is not checked. Note that execution continu
 The return value of an external call is not checked. Note that execution continue even if the called contract throws.

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xeea4c864`
@ -34,7 +34,7 @@ The return value of an external call is not checked. Note that execution continu
 This contract executes a message call to an address provided as a function argument. Generally, it is not recommended to call user-supplied addresses using Solidity's call() construct. Note that attackers might leverage reentrancy attacks to exploit race conditions or manipulate this contract's state.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xeea4c864`
--- a/tests/testdata/outputs_expected/kinds_of_calls.sol.o.text
+++ b/tests/testdata/outputs_expected/kinds_of_calls.sol.o.text
@ -1,4 +1,5 @@
 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0x141f32ff
@ -7,6 +8,7 @@ The return value of an external call is not checked. Note that execution continu
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0x9b58bc26
@ -15,6 +17,7 @@ The return value of an external call is not checked. Note that execution continu
 --------------------

 ==== Message call to external contract ====
+SWC ID: 107
 Type: Warning
 Contract: Unknown
 Function name: _function_0xeea4c864
@ -23,6 +26,7 @@ This contract executes a message call to an address provided as a function argum
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0xeea4c864
--- a/tests/testdata/outputs_expected/multi_contracts.sol.o.json
+++ b/tests/testdata/outputs_expected/multi_contracts.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 142, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "In the function `_function_0x8a4068dd` a non-zero amount of Ether is sent to msg.sender.\nIt seems that this function can be called without restrictions.", "function": "_function_0x8a4068dd", "title": "Ether send", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 142, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "In the function `_function_0x8a4068dd` a non-zero amount of Ether is sent to msg.sender.\nIt seems that this function can be called without restrictions.", "function": "_function_0x8a4068dd", "swc_id": "105", "title": "Ether send", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/multi_contracts.sol.o.markdown
+++ b/tests/testdata/outputs_expected/multi_contracts.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Ether send
-
+- SWC ID: 105
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0x8a4068dd`
--- a/tests/testdata/outputs_expected/multi_contracts.sol.o.text
+++ b/tests/testdata/outputs_expected/multi_contracts.sol.o.text
@ -1,4 +1,5 @@
 ==== Ether send ====
+SWC ID: 105
 Type: Warning
 Contract: Unknown
 Function name: _function_0x8a4068dd
--- a/tests/testdata/outputs_expected/origin.sol.o.json
+++ b/tests/testdata/outputs_expected/origin.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 317, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "Function transferOwnership(address) retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.\nSee also: https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin", "function": "transferOwnership(address)", "title": "Use of tx.origin", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 317, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "Function %s retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.\nSee also: https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin", "function": "transferOwnership(address)", "swc_id": "115", "title": "Use of tx.origin", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/origin.sol.o.markdown
+++ b/tests/testdata/outputs_expected/origin.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Use of tx.origin
-
+- SWC ID: 115
 - Type: Warning
 - Contract: Unknown
 - Function name: `transferOwnership(address)`
@ -9,5 +9,5 @@

 ### Description

-Function transferOwnership(address) retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.
+Function %s retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.
 See also: https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin
--- a/tests/testdata/outputs_expected/origin.sol.o.text
+++ b/tests/testdata/outputs_expected/origin.sol.o.text
@ -1,9 +1,10 @@
 ==== Use of tx.origin ====
+SWC ID: 115
 Type: Warning
 Contract: Unknown
 Function name: transferOwnership(address)
 PC address: 317
-Function transferOwnership(address) retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.
+Function %s retrieves the transaction origin (tx.origin) using the ORIGIN opcode. Use msg.sender instead.
 See also: https://solidity.readthedocs.io/en/develop/security-considerations.html#tx-origin
 --------------------

--- a/tests/testdata/outputs_expected/overflow.sol.o.json
+++ b/tests/testdata/outputs_expected/overflow.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 567, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "title": "Integer Underflow", "type": "Warning"}, {"address": 649, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "title": "Integer Underflow", "type": "Warning"}, {"address": 725, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `sendeth(address,uint256)`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "sendeth(address,uint256)", "title": "Integer Overflow", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 567, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Underflow", "type": "Warning"}, {"address": 649, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Underflow", "type": "Warning"}, {"address": 725, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `sendeth(address,uint256)`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Overflow", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/overflow.sol.o.markdown
+++ b/tests/testdata/outputs_expected/overflow.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Integer Underflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
@ -13,7 +13,7 @@ A possible integer underflow exists in the function `sendeth(address,uint256)`.
 The subtraction may result in a value < 0.

 ## Integer Underflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
@ -25,7 +25,7 @@ A possible integer underflow exists in the function `sendeth(address,uint256)`.
 The subtraction may result in a value < 0.

 ## Integer Overflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
--- a/tests/testdata/outputs_expected/overflow.sol.o.text
+++ b/tests/testdata/outputs_expected/overflow.sol.o.text
@ -1,4 +1,5 @@
 ==== Integer Underflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)
@ -8,6 +9,7 @@ The subtraction may result in a value < 0.
 --------------------

 ==== Integer Underflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)
@ -17,6 +19,7 @@ The subtraction may result in a value < 0.
 --------------------

 ==== Integer Overflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)
--- a/tests/testdata/outputs_expected/returnvalue.sol.o.json
+++ b/tests/testdata/outputs_expected/returnvalue.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 196, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0x633ab5e0", "title": "Message call to external contract", "type": "Informational"}, {"address": 285, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0xe3bea282", "title": "Message call to external contract", "type": "Informational"}, {"address": 290, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe3bea282", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
+{"error": null, "issues": [{"address": 196, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0x633ab5e0", "swc_id": "107", "title": "Message call to external contract", "type": "Informational"}, {"address": 285, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.", "function": "_function_0xe3bea282", "swc_id": "107", "title": "Message call to external contract", "type": "Informational"}, {"address": 290, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The return value of an external call is not checked. Note that execution continue even if the called contract throws.", "function": "_function_0xe3bea282", "swc_id": "104", "title": "Unchecked CALL return value", "type": "Informational"}], "success": true}
--- a/tests/testdata/outputs_expected/returnvalue.sol.o.markdown
+++ b/tests/testdata/outputs_expected/returnvalue.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0x633ab5e0`
@ -12,7 +12,7 @@
 This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.

 ## Message call to external contract
-
+- SWC ID: 107
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xe3bea282`
@ -23,7 +23,7 @@ This contract executes a message call to to another contract. Make sure that the
 This contract executes a message call to to another contract. Make sure that the called contract is trusted and does not execute user-supplied code.

 ## Unchecked CALL return value
-
+- SWC ID: 104
 - Type: Informational
 - Contract: Unknown
 - Function name: `_function_0xe3bea282`
--- a/tests/testdata/outputs_expected/returnvalue.sol.o.text
+++ b/tests/testdata/outputs_expected/returnvalue.sol.o.text
@ -1,4 +1,5 @@
 ==== Message call to external contract ====
+SWC ID: 107
 Type: Informational
 Contract: Unknown
 Function name: _function_0x633ab5e0
@ -7,6 +8,7 @@ This contract executes a message call to to another contract. Make sure that the
 --------------------

 ==== Message call to external contract ====
+SWC ID: 107
 Type: Informational
 Contract: Unknown
 Function name: _function_0xe3bea282
@ -15,6 +17,7 @@ This contract executes a message call to to another contract. Make sure that the
 --------------------

 ==== Unchecked CALL return value ====
+SWC ID: 104
 Type: Informational
 Contract: Unknown
 Function name: _function_0xe3bea282
--- a/tests/testdata/outputs_expected/suicide.sol.o.json
+++ b/tests/testdata/outputs_expected/suicide.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 146, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The function `_function_0xcbf0b0c0` executes the SUICIDE instruction. The remaining Ether is sent to an address provided as a function argument.\n", "function": "_function_0xcbf0b0c0", "title": "Unchecked SUICIDE", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 146, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "The function `_function_0xcbf0b0c0` executes the SUICIDE instruction. The remaining Ether is sent to an address provided as a function argument.\n", "function": "_function_0xcbf0b0c0", "swc_id": "106", "title": "Unchecked SUICIDE", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/suicide.sol.o.markdown
+++ b/tests/testdata/outputs_expected/suicide.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Unchecked SUICIDE
-
+- SWC ID: 106
 - Type: Warning
 - Contract: Unknown
 - Function name: `_function_0xcbf0b0c0`
--- a/tests/testdata/outputs_expected/suicide.sol.o.text
+++ b/tests/testdata/outputs_expected/suicide.sol.o.text
@ -1,4 +1,5 @@
 ==== Unchecked SUICIDE ====
+SWC ID: 106
 Type: Warning
 Contract: Unknown
 Function name: _function_0xcbf0b0c0
--- a/tests/testdata/outputs_expected/underflow.sol.o.json
+++ b/tests/testdata/outputs_expected/underflow.sol.o.json
@ -1 +1 @@
-{"error": null, "issues": [{"address": 567, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "title": "Integer Underflow", "type": "Warning"}, {"address": 649, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "title": "Integer Underflow", "type": "Warning"}, {"address": 725, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `sendeth(address,uint256)`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "sendeth(address,uint256)", "title": "Integer Overflow", "type": "Warning"}], "success": true}
+{"error": null, "issues": [{"address": 567, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Underflow", "type": "Warning"}, {"address": 649, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer underflow exists in the function `sendeth(address,uint256)`.\nThe subtraction may result in a value < 0.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Underflow", "type": "Warning"}, {"address": 725, "contract": "Unknown", "debug": "<DEBUG-DATA>", "description": "A possible integer overflow exists in the function `sendeth(address,uint256)`.\nThe addition or multiplication may result in a value higher than the maximum representable integer.", "function": "sendeth(address,uint256)", "swc_id": "101", "title": "Integer Overflow", "type": "Warning"}], "success": true}
--- a/tests/testdata/outputs_expected/underflow.sol.o.markdown
+++ b/tests/testdata/outputs_expected/underflow.sol.o.markdown
@ -1,7 +1,7 @@
 # Analysis results for test-filename.sol

 ## Integer Underflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
@ -13,7 +13,7 @@ A possible integer underflow exists in the function `sendeth(address,uint256)`.
 The subtraction may result in a value < 0.

 ## Integer Underflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
@ -25,7 +25,7 @@ A possible integer underflow exists in the function `sendeth(address,uint256)`.
 The subtraction may result in a value < 0.

 ## Integer Overflow
-
+- SWC ID: 101
 - Type: Warning
 - Contract: Unknown
 - Function name: `sendeth(address,uint256)`
--- a/tests/testdata/outputs_expected/underflow.sol.o.text
+++ b/tests/testdata/outputs_expected/underflow.sol.o.text
@ -1,4 +1,5 @@
 ==== Integer Underflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)
@ -8,6 +9,7 @@ The subtraction may result in a value < 0.
 --------------------

 ==== Integer Underflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)
@ -17,6 +19,7 @@ The subtraction may result in a value < 0.
 --------------------

 ==== Integer Overflow ====
+SWC ID: 101
 Type: Warning
 Contract: Unknown
 Function name: sendeth(address,uint256)