Big Muddy
Big Muddy is Jean-Paul R. Soucy's blog about technology, science, politics, and other curiosities.
Security Update: Suspected Supply Chain Incident | liteLLM
docs.litellm.aiAs of 2:00 PM ET on March 24, 2026
AI Supply Chain Security After Mercor
The Mercor breach and the LiteLLM compromise exposed a blind spot in AI security. This deep technical piece explains how to secure AI data vendors, CI/CD paths, release pipelines, and AI gateways with continuous red teaming and evidence-backed validation.
Incident Report: LiteLLM/Telnyx supply-chain attacks, with guidance - The Python Package Index Blog
Python Package Index shares insights and provides guidance following LiteLLM/Telnyx supply-chain attacks
How we caught the Axios supply chain attack — Elastic Security Labs
Joe Desimone shares the story of how he caught the Axios supply chain attack with a proof of concept tool built in an afternoon.
Big Muddy
Big Muddy is Jean-Paul R. Soucy's blog about technology, science, politics, and other curiosities.
Big Muddy
Big Muddy is Jean-Paul R. Soucy's blog about technology, science, politics, and other curiosities.
LiteLLM TeamPCP Supply Chain Attack: Malicious PyPI Packages | Wiz Blog
TeamPCP compromises LiteLLM, distributing malicious PyPI versions 1.82.7 and 1.82.8, using .pth files for stealthy persistence and data exfiltration.
CVE-2026-33634 - GitHub Advisory Database
Trivy ecosystem supply chain was briefly compromised
My New Secure Baseline for GitHub
In March there was a particularly nasty supply chain attack targeting Aqua Security and their tools, including the widely used Trivy security scanner, which later spread to other projects. The attack was carried out by a threat actor named TeamPCP and began by exploiting an insecure GitHub Actions workflow that utilised the pull_request_target trigger – a type known to be dangerous and easily misused. Using this, they stole a Personal Access Token granting wider access to the aquasecurity org.
Supply-Chain-Attacke auf LiteLLM: Betroffene sollen Credentials sofort ändern
Es hat offenbar ein Angriff auf die Open-Source-Bibliothek zur Anbindung an LLMs stattgefunden, wodurch zwei kompromittierte Pakete Credentials stehlen können.
Cybersecurity Looks Like Proof of Work Now
Is security spending more tokens than your attacker?
Dependency cooldowns are now supported in the latest version of pip
Python’s default package management system pip now has an official mechanism for supporting dependency cooldowns, which we previously discussed on this blog as …
Multi-Agent Systems and AI Transformations
AI everywhere, agents everywhere. We just finished the first quarter of 2026, and a lot happened in those first 3 months. It feels like 3 y...
Why pylock.toml includes digital attestations
A Python project got hacked where malicious releases were directly uploaded to PyPI. I said on Mastodon that had the project used trusted publishing with digital attestations, then people using a pylock.toml file would have noticed something odd was going on thanks to the lock file including attestation data.
Open source security at Astral
Insights and guidance from our engineering team on how Astral secures its tools.