Agents
Google ADK Python Security Advisory: Unpinned LiteLLM Dependency Exposed Agent Developers to TeamPCP Supply Chain Backdoor
A GitHub security advisory (issue #4986) revealed that Google's Agent Development Kit for Python listed litellm>=1.75.5 as an optional dependency with no upper-bound pin, meaning any developer who ran pip install google-adk[extensions] during the March 24 compromise window could have pulled in the TeamPCP-backdoored LiteLLM packages (v1.82.7/1.82.8). The compromised packages deployed a three-stage payload: credential harvesting, Kubernetes lateral movement, and persistent backdoor for RCE. With LiteLLM's three million daily PyPI downloads, this represents a systemic supply chain risk for agent frameworks using unpinned AI middleware dependencies.
Source
↳ Follow the thread