PANews reported on December 21 that 23pds, Chief Information Security Officer of SlowMist Technology, retweeted a post from a community user issuing a security warning. The warning stated that a developer of a Polymarket copy trading bot program hid malicious code in its GitHub code. Upon launch, the program automatically reads the user's ".env" file (containing the wallet's private key) and sends it to a hacker's server to steal the key. The program's author repeatedly modified and committed the code to GitHub, deliberately hiding the malicious package. 23pds warned that this method should be viewed with caution, stating, "This is not the first time, and it won't be the last."