Best AI News — Updated Every 3 Hours
Story Page
← All Stories
Home Community Story
Community

Litellm has been compromised

Via r/LocalLlama
Tuesday, Mar 24, 2026 · 8:06PM
Summary

Litellm on PyPI has been compromised with a credential stealing payload. Litellm is a core dependency across oss stacks (ollama even). If you have auto updates to anything that uses litellm or downloaded litellm after march 24, downgrade to 1.82.6 or lower.

Continue reading the full article
Read at r/LocalLlama
www.reddit.com
Related in Community
[R] How are you managing long-running preprocessing jobs at scale? Curious what's actually working
r/MachineLearning
Prices finally coming down? 🥺🙏
r/LocalLlama
OpenCode source code audit: 7 external domains contacted, no privacy policy, 12 community PRs unmerged for 3+ months
r/LocalLlama
New open weights models: GigaChat-3.1-Ultra-702B and GigaChat-3.1-Lightning-10B-A1.8B
r/LocalLlama
Nemotrons
r/LocalLlama
More from Best AI News
OpenAI just gave up on Sora and its billion-dollar Disney deal
The Verge AI · Industry & Money
Anthropic hands Claude Code more control, but keeps it on a leash
TechCrunch AI · Industry & Money
Spotify tests new tool to stop AI slop from being attributed to real artists
TechCrunch AI · Industry & Money
Arm’s first CPU ever will plug into Meta’s AI datacenters later this year
The Verge AI · Industry & Money
Back to all stories