Hacker News
new
top
best
ask
show
job
Cline Supply Chain Attack: Cline 2.3.0 Silently Installs OpenClaw
(
www.stepsecurity.io
)
10 points
by
varunsharma07
7 hours ago
1 comment
varunsharma07
7 hours ago
cline@2.3.0 was published with a malicious post-install script that silently installs OpenClaw on any machine running npm install.