python · semantic-routerCritical
semantic-router 0.1.8–0.1.14: Malicious litellm dependency exfiltrates credentials
semantic-router versions 0.1.8 through 0.1.14 declare `litellm>=1.61.3` with no upper bound, allowing a malicious `litellm==1.82.8` wheel to be installed, which
What changed
semantic-router versions 0.1.8 through 0.1.14 declare `litellm>=1.61.3` with no upper bound, allowing a malicious `litellm==1.82.8` wheel to be installed, which exfiltrates credentials and secrets.
Who it affects
Users who installed semantic-router 0.1.8–0.1.14 during the window when litellm==1.82.8 was on PyPI.
What to do today
Upgrade to semantic-router 0.1.15 or pin litellm>=1.83.7, audit site-packages for litellm_init.pth, and rotate exposed credentials.
The trail
Collected→
Audited→
Written→
Published