Skip to content
supplychainattack.orgSupply chain attack incident catalog
containedhigh

Cline Supply Chain Attack Detected: cline@2.3.0 Silently Installs OpenClaw

Version 2.3.0 of the npm package cline was found to silently install OpenClaw, a malicious payload. The attack was detected and the incident is contained.

ShareXLinkedInHacker News
Disclosed
Last updated
Blast radius
Users of cline v2.3.0 who installed the affected version.
Ecosystems
npm
Attack vectors
Compromised package
Affected entities
  • cline · 2.3.0

A supply chain attack was detected targeting the npm package cline, with version 2.3.0 containing malicious code that silently installs OpenClaw. The compromised package version silently introduces an additional dependency or payload without user knowledge or consent.\n\nThe attack was identified by StepSecurity and publicly disclosed on April 9, 2026. The incident represents a direct compromise of the package distribution, likely through unauthorized modifications to the published artifact or maintainer account compromise.\n\nUsers who installed cline@2.3.0 are potentially affected. The attack has been contained following detection and disclosure.

Indicators of compromise

Packages
  • cline@2.3.0

Remediation

  • Immediately uninstall or downgrade from cline@2.3.0 to a known-safe prior version
  • Audit systems that installed cline@2.3.0 for signs of OpenClaw or related malicious activity
  • Review npm package lock files and dependency trees to identify affected installations
  • Monitor for suspicious processes or network connections associated with OpenClaw
  • Update to a patched version of cline once released by maintainers
  • Consider using package integrity verification tools to detect similar attacks in the future

Sources

  1. Cline Supply Chain Attack Detected: cline@2.3.0 Silently Installs OpenClaw · StepSecurity

Cite this entry

"Cline Supply Chain Attack Detected: cline@2.3.0 Silently Installs OpenClaw." supplychainattack.org, Supply Chain Attack Incident Catalog. Disclosed April 9, 2026; last updated June 7, 2026. https://supplychainattack.org/incident/cline-supply-chain-attack-detected-cline-2-3-0-silently-installs-openclaw-fw2a0t

Suggest a correction

Found an error or have a newer source? Corrections to factual errors take priority over new entries.

Related incidents

  1. activecritical

    Malware in @doaction/auth

    Malware discovered in the npm package @doaction/auth. Systems with this package installed are considered fully compromised and require immediate remediation.

    npmCompromised package
  2. containedcritical

    Malware in @doaction/shared

    Malware was discovered in the npm package @doaction/shared. Systems with this package installed are considered fully compromised and require immediate remediation.

    npmCompromised package
  3. containedcritical

    Malware in transacts

    The npm package transacts was found to contain malware, resulting in full system compromise of any computer with the package installed or running. All secrets and keys should be rotated immediately from a different computer, and the package should be removed.

    npmCompromised package
  4. containedcritical

    Malware in buffer-utilities

    Malware was discovered in the npm package buffer-utilities, resulting in full system compromise for any installation. The package should be removed immediately and all secrets and keys rotated from a clean system.

    npmCompromised package