Home

A GitHub Issue Title Compromised 4,000 Developer Machines

Link: https://grith.ai/blog/clinejection-when-your-ai-tool-installs-another

https://piefed.social/c/technology
https://www.w3.org/ns/activitystreams#Public
#security

$$7544

https://piefed.social/u/rimu posted on Mar 6, 2026 02:28

By injecting a prompt into a GitHub issue title, which an AI triage bot read, an attacker was able to install OpenClaw onto 4000 developer’s computers. But it could have been used to install any npm package - the sky is the limit.

https://piefed.social/c/technology/p/1847581/a-github-issue-title-compromised-4000-developer-machines

$$7558

https://fedia.io/u/LostWanderer posted on Mar 6, 2026 03:31
In reply to: https://piefed.social/c/technology/p/1847581/a-github-issue-title-compromised-4000-developer-machines

Hmm, the fear that everyone was concerned about when Microslop injected Coslop into it’s latest acquisition is coming to pass. Glad I didn’t start my first project on a compromised GitHub.

https://fedia.io/m/technology@piefed.social/t/3550889/-/comment/14287156