近日，人工智能领域发生了一起震动全球开发者的安全事件。作为AI开发核心枢纽的LiteLLM网关遭遇供应链投毒攻击，大量使用者的密钥与敏感信息被窃取。这一事件被业界称为“教科书级别的供应链攻击”，其影响范围之广、危害程度之深，再次暴露出当前AI供应链体系的安全隐患。 LiteLLM作为AI网关，能够代理100多种大语言模型（LLM）的API，被广泛应用于AI编程与服务编排场景。目前其在GitHub上 ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

编辑｜冷猫这是一件极其严肃的软件安全事件。今天，Karpathy 发长推文警告全部开发者注意，GitHub 超过 4 万星，月下载量达 9700 万次的 Python 库 LiteLLM 在 PyPI 上被投毒。首先提请各位开发者检查自己的 ...

Use Playerctl, Python, and Conky timer to create a 'now playing' Spotify desktop widget.

Not everyone can declare themselves “benevolent dictator for life” of a company, but such was the nature of Guido van Rossum, the Dutch programmer who invented an entire programming language from ...

Send a note to Doug Wintemute, Kara Coleman Fields and our other editors. We read every email. By submitting this form, you agree to allow us to collect, store, and potentially publish your provided ...

A startling milestone has been reached in Florida's war against the invasive Burmese pythons eating their way across the Everglades. The Conservancy of Southwest Florida reports it has captured and ...

There’s more than one way to thread (or not to thread) a Python program. We point you to several threading resources, a fast new static type checker from Astral, a monkey patch for Pandas that adds ...

For fixing Windows errors, we recommend Fortect: Fortect will identify and deploy the correct fix for your Windows errors. Follow the 3 easy steps to get rid of ...