Skip to content

Commit 16dc9aa

Browse files
gkorlandCopilot
gkorland
and
Copilot
committed
fix(deps): bump litellm to ~=1.83.0 to fix critical vulnerabilities
Addresses: - GHSA-jjhc-v7c2-5hh6: OIDC authentication bypass via cache key collision (critical) - GHSA-53mr-6c8q-9789: Privilege escalation via unrestricted proxy config (high) Both vulnerabilities are fixed in litellm 1.83.0+. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
1 parent b7ce993 commit 16dc9aa

2 files changed

Lines changed: 5 additions & 5 deletions

File tree

pyproject.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@ requires-python = ">=3.12"
77
dependencies = [
88
"fastapi~=0.135.1",
99
"uvicorn~=0.42.0",
10-
"litellm~=1.82.0",
10+
"litellm~=1.83.0",
1111
"falkordb~=1.6.0",
1212
"psycopg2-binary~=2.9.11",
1313
"pymysql~=1.1.0",

uv.lock

Lines changed: 4 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)