Settings

Theme

Cline Supply Chain Attack: Cline 2.3.0 Silently Installs OpenClaw

stepsecurity.io

12 points by varunsharma07 2 months ago · 1 comment

Reader
varunsharma07OP 2 months ago

cline@2.3.0 was published with a malicious post-install script that silently installs OpenClaw on any machine running npm install.

Keyboard Shortcuts

j
Next item
k
Previous item
o / Enter
Open selected item
?
Show this help
Esc
Close modal / clear selection