🔍 AI Stack Audit ⚡ Live Advisories

🚨 Active Incident: LiteLLM versions 1.82.7 and 1.82.8 on PyPI were confirmed compromised on March 24, 2026. Both packages contained malicious code. If you installed either version, rotate your API keys immediately and downgrade to 1.82.6 or upgrade to 1.82.9+.
→ Official issue thread

Is Your AI Stack
Compromised?

Paste your requirements.txt below. We'll instantly check it against known-compromised AI packages — no sign-up, no BS.

Paste requirements.txt or pip freeze output

🔔 Get Instant Alerts for Future AI Package Compromises

This tool checked your stack right now — but what about next week? The LiteLLM incident won't be the last. Get email alerts the moment any of the 50+ top AI packages are flagged for a supply chain attack, typosquat, or malicious release.

🗂 Current Advisories

litellm 1.82.7 / 1.82.8

Both versions confirmed to contain malicious code injected via supply chain attack on the PyPI publisher account. Downgrade to 1.82.6 or upgrade to 1.82.9+. Rotate all API keys if installed.
GitHub Advisory →

langchain-community 0.3.x (Monitor)

No confirmed compromise but elevated risk following the LiteLLM incident. Verify your installation source. Watch for updates.

Is Your AI StackCompromised?

🔔 Get Instant Alerts for Future AI Package Compromises

🗂 Current Advisories

Is Your AI Stack
Compromised?