Skip to main content
AI Socratic

LiteLLM PyPI Supply Chain Attack Exfiltrates Credentials

March 30, 2026Posted by Federico Ulfo

ScreenLess Phone

LiteLLM's PyPI release 1.82.8 was compromised in a major supply chain attack. A simple pip install litellm could exfiltrate SSH keys, AWS/GCP/Azure credentials, Kubernetes configs, API keys, crypto wallets, and more. The package was audited by Delve, a firm criticized for rubber-stamping security audits, highlighting systemic risks in the AI tooling supply chain.

Sources: tweet