NewsCline CLI Clinejection Supply Chain Attack — 4000 Developers CompromisedThe Hacker News·high signalAttacker compromised npm publish token to push Cline CLI v2.3.0 with malicious postinstall script installing OpenClaw. First AI coding tool supply chain attack. 8 hours live, 4000 downloads.SourceSource pageThe Hacker News↳ Follow the threadShared entity / Stack layerOpenClaw ships broad July 6 platform update: GPT-5.6 support, external harness attach, hardened provider I/OReleasebotStack layer / Threat patternMalicious agent skills evade every scanner: HKUST's SkillCloak beats detectors 90%+ of the time, SkillDetonate catches 97%Help Net SecurityPolicy dependency / Stack layerKastra Launches Policy Enforcement for Claude Code, Cursor, and CodexHacker NewsStack layer / ContrastOpenAI launches ChatGPT Work, an agentic workspace on GPT-5.6, with Sol/Luna/Terra model tiersInfoWorldStack layer / ContrastMeta Charges for a Frontier Model for the First Time: Muse Spark 1.1 at $1.25/$4.25TechCrunchPolicy dependency / Stack layerponytail: A 'Laziest Senior Dev' Skill That Cuts Agent-Written Code by ~54% Is the Fastest-Rising Repo on GitHubGitHubStack layer / Threat patternClaude Cowork Sandbox-Escape Chain Reportedly Escalates Local Code Execution to RootCyberdessertsPolicy dependency / Threat patternPrismata Confines Cross-Site Prompt Injection by Treating Web Agents Like an XSS ProblemarXiv