DigiNews

Summary

The Grith blog details a supply-chain style attack dubbed Clinejection, where a crafted GitHub issue title prompted an AI-powered CI workflow to execute a malicious postinstall script that installed a second AI agent (OpenClaw) on about 4,000 developer machines. It outlines a five-step chain—from prompt injection to credential exfiltration and malicious publishing—plus remediation and organizational lessons on securing AI-enabled automation in CI/CD pipelines.