A GitHub Issue Title Compromised 4,000 Developer Machines (grith.ai)
Date:
Thu, 05 Mar 2026 19:21:21 +0000
Description:
The grith.ai blog reports on an LLM prompt-injection vulnerability that led
to 4,000 installations of
a compromised version of the Cline utility. For the next eight hours, every developer who installed or updated
Cline got OpenClaw - a separate AI agent with full system access -
installed globally on their machine without consent. Approximately
4,000 downloads occurred before the package was pulled. The interesting part is not the payload. It is how the attacker got
the npm token in the first place: by injecting a prompt into a
GitHub issue title, which an AI triage bot read, interpreted as an
instruction, and executed.
======================================================================
Link to news story:
https://lwn.net/Articles/1061548/
--- Mystic BBS v1.12 A49 (Linux/64)
* Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)