Top LLM PyPl package compromised to steal user details #oldaily https://www.downes.ca/post/79045 As reported here and widely elsewhere, "A hugely popular Python package called LiteLLM was compromised and used to deploy an infostealer malware to hundreds of thousands of devices." The malware grabbed API keys, .env credentials, personal information, and much more. The danger is magnified because the package is frequently used by Claude Code, so people might not be aware their projects contain it.