Y
Hacker News
new
|
ask
|
show
|
jobs
by
Imustaskforhelp
84 days ago
1.82.7 is also impacted if I remember correctly.
1 comments
GrayShade
84 days ago
1.82.7 doesn't have litellm_init.pth in the archive. You can download them from pypi to check.
EDIT: no, it's compromised, see proxy/proxy_server.py.
link
cpburns2009
84 days ago
1.82.7 has the payload in `litellm/proxy/proxy_server.py` which executes on import.
link
EDIT: no, it's compromised, see proxy/proxy_server.py.