LiteLLM Python package compromised by supply-chain attack
BerriAI / litellm Public Uh oh! There was an error while loading. Please reload this page. Notifications You must be signed in to change notification settings Fork 6.7k Star 40.2k [Security]: CRITICAL: Malicious litellm_init.pth in litellm 1.82.8 — credential stealer #24512New issueCopy linkNew issueCopy linkOpenOpen[Security]: CRITICAL: Malicious litellm_init.pth in litellm 1.82.8 — credential stealer#24512Copy linkLabelsllm translationDescriptionisfinneopened on Mar 24, 2026Issue body actions[Security]: CRITICAL: Malicious litellm_init.pth in litellm 1.82.8 PyPI package — credential stealer Summary The litellm==1.82.8 wheel package on PyPI contains a malicious .pth file (litellm_init.pth, 34,628 bytes) that…
