Cline
v3.x (CLI v3.0.39, 2026-07-09)Cline Bot Inc.
The most-adopted open-source coding agent (5M+ installs by Feb 2026), formerly 'Claude Dev'. Apache-2.0, runs in VS Code, JetBrains, terminal CLI, and via an SDK. Client-side BYOK architecture keeps code local while routing to any model provider; Plan/Act modes with human approval gate edits and commands. Security researchers demonstrated prompt-injection paths that bypassed command approval (mitigated in v3.35.0), and Anthropic's 2026 OAuth crackdown cut off Claude subscription use.
Trust Vector Analysis
Dimension Breakdown
๐Performance & Reliability+
Adoption-signal and hands-on assessment of multi-file coding task completion; accuracy tracks the BYOK model chosen
Tool invocation testing across editors, terminal execution, and MCP integrations
Evaluation of Plan/Act workflow on long-horizon multi-file changes
Review of rules files, checkpoints, and task-history persistence
Observed recovery from failing builds and tests plus checkpoint restore testing
Review of multi-agent orchestration features and headless automation support
๐ก๏ธSecurity+
Execution isolation review; approval gates substitute for sandboxing, and auto-approve weakens them
Assessment of the approval model, auto-approve granularity, and enterprise policy features
Review of published injection research (approval bypass, TOCTOU payload assembly, supply-chain triager attack) and vendor mitigations
Data-flow review of the BYOK client-side design and optional Cline-provided inference
License and source availability review
๐Privacy & Compliance+
Privacy architecture review of client-side BYOK data flows
Compliance review across BYOK and team-plan configurations
Data-flow analysis across configured providers and user-installed MCP servers
Deployment options assessment including local-model configurations
๐๏ธTrust & Transparency+
Documentation completeness and accuracy review
Review of diff previews, task transcripts, and checkpoint history
Assessment of plan previews and pre-execution reasoning visibility
Open source assessment of license and codebase completeness
Community engagement analysis via installs, stars, release cadence, and ecosystem forks
โ๏ธOperational Excellence+
Setup time and integration surface assessment across IDEs, CLI, and SDK
Assessment of headless/CI usage and multi-instance operation
Pricing analysis of BYOK token costs and the impact of the consumer-OAuth policy change
Monitoring features assessment for individual and team usage
Maturity assessment from adoption scale, release stability, and security response history
- +Most-adopted open-source coding agent: 5M+ installs (Feb 2026), 64.5K GitHub stars
- +Client-side BYOK: code never touches Cline servers in default configuration
- +Plan/Act separation with diff previews and per-command approval
- +Very broad provider support: Anthropic, OpenAI, Gemini, OpenRouter (200+ models), Bedrock, Vertex, Ollama, LM Studio
- +Apache-2.0 across extension, CLI, and SDK; spawned a large fork ecosystem
- +MCP marketplace and .clinerules for extensibility and team policy
- !No sandbox: approval prompts are the only barrier between the model and the real shell/workspace
- !Demonstrated prompt-injection attacks bypassed command approval via .clinerules/docstrings before v3.35.0 mitigations; auto-approve settings re-open that risk
- !Anthropic ToS change (Jan-Apr 2026) blocked Claude Pro/Max OAuth use, forcing API-key costs on Claude users
- !Full-context prompting makes token costs high on large tasks
- !Compliance program is lighter than enterprise vendors; largely inherited from the chosen provider
- !User-installed MCP servers are an unvetted supply-chain surface
Use Case Ratings
code generation
Flagship use case: Plan/Act workflow with diff-gated edits across VS Code, JetBrains, and CLI
data analysis
Handles scripted analysis and notebooks through terminal and file tools
research assistant
Codebase exploration and web research via browser tool and MCP servers
content creation
Fine for technical docs; not built for general content work