New contract with similar bytecode to exploit template

Polymarket's assessment for RD-F-094 — scored not_assessed on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

v1-deferred. No similar-bytecode contract deployment to CTF Exchange or CTF documented. Feb 2026 malicious GitHub bot campaign used npm typosquatting (ts-bign, big-nunber), not on-chain bytecode clones. Not in v1 monitoring scope.

Sources #

URL
Malicious Polymarket Bot Hides in Hijacked dev-protocol GitHub OrgStepSecurity — Malicious Polymarket bot GitHub campaignretrieved 2026-04-29

Methodology #

Detect whether a freshly deployed contract has high bytecode similarity to a known exploit template targeting this protocol class.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol polymarket factor RD-F-094 score not_assessed collected_at 2026-04-29 16:25:39