Three open-source alternatives to litellm after PyPI supply chain attack
litellm versions 1.82.7 and 1.82.8 on PyPI were compromised with credential-stealing malware in a supply chain attack. For developers using AI coding agents who need to migrate, here are three open-source alternatives mentioned in the source.
Bifrost
Described as the most direct litellm replacement currently available. Written in Go, it claims ~50x faster P99 latency than litellm. Licensed under Apache 2.0 and supports 20+ providers. Migration from litellm requires only a one-line base URL change.
Kosong
An LLM abstraction layer open-sourced by Kimi and used in Kimi CLI. More agent-oriented than litellm, it unifies message structures and provides async tool orchestration with pluggable chat providers. Supports OpenAI, Anthropic, Google Vertex, and other API formats.
Helicone
An AI gateway with strong analytics and debugging capabilities. Supports 100+ providers. Heavier than Bifrost or Kosong but more feature-rich on the observability side.
📖 Read the full source: r/LocalLLaMA
👀 See Also
The Uniformed Guard Problem: Why Agent Sandboxes Need Identity, Not Just Policy
Nemoclaw's openshell sandbox scopes policies to binaries, enabling malware to live-off-the-land using the same binaries as the agent. ZeroID, an open-source agent identity layer, applies security policies to agents backed by secure identities.
MCPwner AI Pentesting Tool Finds Multiple 0-Day Vulnerabilities in OpenClaw
MCPwner, an MCP server that orchestrates AI agents for automated penetration testing, identified several critical 0-day vulnerabilities in OpenClaw including environment variable injection, permission bypass, and information disclosure flaws that standard scanners missed.
Agent Passport: Identity Verification for AI Agents
Agent Passport is an open-source identity verification layer using Ed25519 authentication and JWT tokens for AI agents, addressing the problem of agent impersonation.
Fake Claude Code site served trojan — detected by Windows Defender as Trojan:Win32/Kepavll!rfn
A typosquatting or ad-based site mimicking the official Claude Code website delivered a trojan detected as Trojan:Win32/Kepavll!rfn by Windows Defender. Reddit user warns others to verify URLs before running PowerShell install commands.