Malicious litellm_init.pth in litellm 1.82.8 PyPI package – credential stealer
707 points - today at 12:36 PM
SourceComments
dang today at 6:45 PM
Comments moved to https://news.ycombinator.com/item?id=47501426, which was posted first.
Nayjest today at 8:10 PM
Use secure and minimalistic lm-proxy instead:
https://github.com/Nayjest/lm-proxy
``` pip install lm-proxy ```
Guys, sorry, as the author of a competing opensource product, I couldn’t resist