litellm

Blog All categories All authors All tags
Preview image for a blog post

LiteLLM CVE-2026-42208: Critical SQL Injection Exploited Within Hours of Disclosure

LiteLLM's critical SQL injection (CVE-2026-42208) was exploited within 36 hours, highlighting rapid threat actor response.
Preview image for a blog post

Deep Dive: The `litellm` Python Supply-Chain Compromise and Runtime Hijacking via `.pth`

Analyzing the `litellm` Python supply-chain attack, its `.pth` vector, and crucial defenses: SBOMs, SLSA, SigStore.