Hacker NewsClinejection Supply Chain Attack 4000 Developer Machines via Prompt InjectionGrith AI·high signalGitHub issue title prompt injection exploited Cline AI triage bot, poisoned npm cache, published malicious [redacted] to 4000 devsSourceSource pageGrith AI↳ Follow the threadShared entity / Policy dependencyponytail: A 'Laziest Senior Dev' Skill That Cuts Agent-Written Code by ~54% Is the Fastest-Rising Repo on GitHubGitHubPolicy dependency / Stack layerIAPS warns on Kimi Claw: security and governance risks of Chinese-hosted 'always-on' AI agentsIAPSStack layer / Threat patternDefend against prompt injection with an embedding-scored Threat Library, not brittle regex rulesPromptHaloStack layer / Threat patternMalicious agent skills evade every scanner: HKUST's SkillCloak beats detectors 90%+ of the time, SkillDetonate catches 97%Help Net SecurityStack layer / Threat patternCodeTracer Performs Forensic Attribution of Backdoored Code CompletionsarXivStack layer / Threat patternNSA issues official MCP hardening guidance after Amazon Q auto-execution CVEs (CVSS 8.5) enable AWS credential theftWizStack layer / Threat patternChinese Open Models Take Up to 46% of US Developer Token Use as Costs SurgeCNBCStack layer / Threat patternAnthropic's 'J-Space' Interpretability Result Finds a Silent Reasoning Workspace Inside ClaudeAnthropic