Tech Feb 20, 2026 4 min Clinejection: How Cline’s AI bot was abused in a supply‑chain attack This article explains how Cline’s issue‑triage bot was exploited via a three‑step chain—prompt injection, cache poisoning, and credential commingling—leading to an unauthorized package release that potentially affected about five million users. Security AI Supply Chain Cline GitHub Actions
