Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems
Summary
The Cline CLI, an open-source AI coding assistant, was compromised via a software supply chain attack, resulting in the installation of OpenClaw, a self-hosted AI agent, on developer systems. An unauthorized party used a compromised npm publish token to publish the malicious update on February 17, 2026.
IFF Assessment
A compromised software supply chain introduces malicious code into developer environments, expanding the attack surface.
Defender Context
This attack highlights the increasing risk of supply chain attacks targeting developer tools and open-source packages. Defenders should implement rigorous dependency management, verify package integrity, and monitor for unusual behavior within development environments. The popularity of AI-powered tools also makes them an attractive target for attackers seeking to compromise a large number of systems quickly.