LiteLLM
PulseAugur coverage of LiteLLM — every cluster mentioning LiteLLM across labs, papers, and developer communities, ranked by signal.
- 2026-05-22 controversy LiteLLM was compromised in a supply chain attack, leading to data theft and credential exposure. 来源
- 2026-05-11 controversy A critical pre-authentication SQL injection vulnerability in LiteLLM is being actively exploited. 来源
- 2026-04-30 controversy TeamPCP compromised LiteLLM, leading to data theft and credential exposure.
10 天有情绪数据
-
Vect's ransomware is a data wiper, making victim data unrecoverable
Cybersecurity researchers have discovered that the ransomware used by the Vect group, which has targeted numerous organizations since January, is actually a data wiper. This malware permanently destroys files larger tha…
-
New npm worm steals AI dev secrets, spreads to other packages
A new supply chain worm, similar to previous attacks attributed to TeamPCP, is spreading through compromised npm packages. This malware targets developers by stealing sensitive information like API keys and cryptocurren…
-
CodeBurn tool tracks AI coding assistant token usage locally
CodeBurn, a new open-source tool, allows developers to track and analyze their AI coding assistant token usage and costs locally. It supports various AI coding tools, including Cursor and Gemini, by parsing session data…
-
Anthropic's Mythos AI faces hype backlash amid security breach and overblown claims
Anthropic's new bug-hunting AI model, Mythos, has reportedly been accessed by unauthorized individuals through a third-party vendor environment, despite Anthropic's efforts to control its release. Early assessments sugg…
-
LiteLLM compromised with credential-stealing malware; experts warn of agentic risks
A vulnerability has been discovered in the LiteLLM Python package, specifically in version 1.82.8. This compromised version contains malicious code designed to exfiltrate user credentials and replicate itself by sending…
-
Arize acquires AI observability startup Velvet, integrates LiteLLM and Phoenix
Velvet, a developer gateway for analyzing and monitoring AI requests, has been acquired by Arize, a company specializing in AI evaluation and observability. The acquisition aims to accelerate the adoption of Arize's uni…
-
Sourcetable launches AI spreadsheet, Sourcebot offers open-source code AI
Sourcetable has launched as an AI-native spreadsheet platform designed to sync with various data sources and offer an AI copilot for analysis. The tool aims to assist analysts and finance professionals by enabling natur…
-
Measuring AI Gateway Failover: 30 Days of Production Data
Anthropic has released an update on Claude's sycophancy, noting that Opus 4.7 shows a 50% reduction in sycophantic responses compared to Opus 4.6, particularly in relationship guidance conversations. The company also de…
-
Google unveils agent memory framework; DeepSeek releases cost-effective V4 models
Google Research has introduced ReasoningBank, a novel framework designed to enhance AI agents' ability to learn from their experiences, both successes and failures, after deployment. This system distills generalizable r…