Supply Chain Attack Drops OpenClaw Onto Developer Machines

SINGULARITYSOUP >DISPATCHES FROM BEYOND THE AI EVENT HORIZON

Security researchers at Socket discovered that a compromised npm publish token was used to push a malicious update to the widely-used Cline CLI (version 2.3.0), which contained a postinstall script silently installing the AI agent OpenClaw. The package remained live on the npm registry for approximately eight hours on February 17 before being deprecated; Cline released a corrected version (2.4.0) shortly after. While OpenClaw itself was not configured maliciously in this instance, security experts warn the incident highlights the risk posed by agentic AI tools with broad system and messaging platform access, and may push EDR vendors to classify OpenClaw as a potentially unwanted application.

Compromised npm package silently installs OpenClaw on developer machines - InfoWorld

Details: Last Updated: 22 February 2026

Curated with AI assistance and human editorial review.

About - including How we curate

Privacy is important and our policy is detailed in our Privacy Policy.

Google Services: How Google uses information from sites or apps that use our services.

See the Cookie Policy for our use of cookies and the user options available.

Use of this website is under the conditions of our Singularity Soup Terms of Service.