polymarket-validator

MAL-2026-1463

npmmalware3/16/2026
Description

Malicious code in polymarket-validator (npm)

Indicators of Compromise
SHA256 Hashes (4)
e7c3b8eaa59a6ad4e61c6fc27f8f17b3ee931e02a540482733dddd7b6d3ba292
eaabc34b405ede16bbc8c04ee24a4a95d4c0d26411da1c1c074dcfa1bbb8e081
d6c5cc93272b23bb8876a4c2f2ce61ec7887bdeb6b89846a0c385022a156c6ca
62bc0b2afd5b6bf31fc89a36ae12f898bfbc9fca04af0d7889d971f6b71c4ae6
References (1)
https://github.com/advisories/GHSA-8gcg-fc8h-ph97OSV
Details
Ecosystemnpm
Attack Typemalware
Published3/16/2026
Affected Versions
0
Aliases
GHSA-8gcg-fc8h-ph97
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001