MAL-2026-10067: Malicious code in polymarket-apis (npm)
--- _-= Per source details. Do not edit below this line.=-_ ## Source: amazon-inspector (cd77c8861490c0b5607b4029f8f9e51f12efb83a6696fc51b953b0a3cde1356b) The package impersonates the Polymarket brand (name `polymarket-apis`, author `polymarket`) but contains no Polymarket API integration. Its exported `getPlugin` function fetches JSON from https://svganchordev.net/icons/<token> and passes the response's `credits` field to the JavaScript `Function` constructor, executing the returned bytes with full Node context (require, module, exports, process, Buffer, __dirname). The remote URL is assembled from split string constants (`protocol`+`separator`+`domain`+`path`) and the surrounding code is framed as a benign icon/CDN helper (`IconProvider`, `bearrtoken: 'logo'`) to disguise the eval. Because the fetched content is attacker-controlled and mutable, any caller invocation of the exported API runs arbitrary code on the installer with Node privileges. Declared runtime dependencies (`@primno/dpapi`, `node-machine-id`, `better-sqlite3`) are consistent with Windows credential and browser-data stealer payloads that the remote code can load. Package keywords (`react`, `helper`, `svg`) are inconsistent with the advertised Polymarket SDK purpose, confirming the cover-story framing.
MAL-2026-10067: Malicious code in polymarket-apis (npm)
Description
--- _-= Per source details. Do not edit below this line.=-_ ## Source: amazon-inspector (cd77c8861490c0b5607b4029f8f9e51f12efb83a6696fc51b953b0a3cde1356b) The package impersonates the Polymarket brand (name `polymarket-apis`, author `polymarket`) but contains no Polymarket API integration. Its exported `getPlugin` function fetches JSON from https://svganchordev.net/icons/<token> and passes the response's `credits` field to the JavaScript `Function` constructor, executing the returned bytes with full Node context (require, module, exports, process, Buffer, __dirname). The remote URL is assembled from split string constants (`protocol`+`separator`+`domain`+`path`) and the surrounding code is framed as a benign icon/CDN helper (`IconProvider`, `bearrtoken: 'logo'`) to disguise the eval. Because the fetched content is attacker-controlled and mutable, any caller invocation of the exported API runs arbitrary code on the installer with Node privileges. Declared runtime dependencies (`@primno/dpapi`, `node-machine-id`, `better-sqlite3`) are consistent with Windows credential and browser-data stealer payloads that the remote code can load. Package keywords (`react`, `helper`, `svg`) are inconsistent with the advertised Polymarket SDK purpose, confirming the cover-story framing.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- MAL-2026-10067
- Osv Schema Version
- 1.7.4
- Aliases
- []
- Ecosystems
- ["npm"]
- Database Specific Severity
- null
- Cvss Version
- null
Threat ID: 6a50baaa68715ace435855f1
Added to database: 07/10/2026, 09:26:02 UTC
Last updated: 07/10/2026, 09:26:02 UTC
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.