Now in early access, book a 30-minute demo →
The Anomity blog

Field notes on agentic AI security

Research, product, and perspective on governing AI agents, MCP servers, and everything loaded into them.

AdvisoryHigh

Cline GitHub Actions Compromise and Unauthorized npm Release - [email protected]

On February 17, 2026 an attacker stole the Cline CLI's npm publish token via a prompt-injection-and-cache-poisoning chain in its GitHub Actions workflows and shipped an unauthorized [email protected] release (with an openclaw-installing postinstall script). The VS Code extension was not affected. No CVE (tracked as GHSA-9ppg-jx86-fqw7).

Anomity Research · ·No CVE; supply-chain incident
Ask AI about Anomity
ChatGPT Claude Perplexity Google AI Grok