Advertisement
SU
HIGH
Supply Chain
litellm 1.82.8 Supply Chain Compromise via Malicious .pth File
Security analysis of a supply chain compromise in litellm 1.82.8 on PyPI, where a malicious .pth file enables automatic code execution on Python startup.
Runtime Rebel Intel
3 min read·Apr 8, 2026
CRITICAL
Supply Chain
TeamPCP Backdoors LiteLLM 1.82.7–1.82.8 via CI/CD Compromise
TeamPCP threat actors compromised LiteLLM versions 1.82.7 and 1.82.8, deploying credential harvesters and Kubernetes lateral movement tools via CI/CD.
Runtime Rebel Intel
3 min read·Mar 24, 2026