PyPI · pypi.org
litellm
Py Runtime Dynamic Dangerous Import: Dynamic __import__('os') — reflection bypass for static checks.
Why PkgRadar flagged 1.84.9
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Dynamic Dangerous Import | Dynamic __import__('os') — reflection bypass for static checks. · litellm-1.84.9/litellm/integrations/gcs_bucket/gcs_bucket_mock_client.py |
| medium | Py Custom Build Backend | Non-standard PEP 517 build-backend `uv_build` — runs custom code at install time. · pyproject.toml |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · litellm-1.84.9/litellm/llms/vertex_ai/image_edit/vertex_gemini_transformation.py |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · litellm-1.84.9/litellm/llms/vertex_ai/image_edit/vertex_imagen_transformation.py |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · litellm-1.84.9/litellm/llms/vertex_ai/image_generation/vertex_gemini_transformation.py |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · litellm-1.84.9/litellm/llms/vertex_ai/image_generation/vertex_imagen_transformation.py |
| medium | Credential file access | matched "AWS_ACCESS_KEY" · litellm-1.84.9/litellm/utils.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.84.9 | High risk | 72 | 2026-06-17 |
1.89.1 | High risk | 72 | 2026-06-16 |
1.88.2 | High risk | 72 | 2026-06-14 |
1.87.3 | High risk | 72 | 2026-06-14 |
1.86.6 | High risk | 72 | 2026-06-14 |
1.85.6 | High risk | 72 | 2026-06-14 |
1.89.0 | High risk | 72 | 2026-06-13 |
1.84.8 | High risk | 72 | 2026-06-13 |
1.87.2 | High risk | 72 | 2026-06-11 |
1.86.5 | High risk | 72 | 2026-06-11 |
1.85.5 | High risk | 72 | 2026-06-11 |
1.84.7 | High risk | 72 | 2026-06-11 |
1.89.0rc2 | High risk | 72 | 2026-06-10 |
1.84.6 | High risk | 72 | 2026-06-09 |
1.88.1 | High risk | 72 | 2026-06-09 |
1.88.0 | High risk | 72 | 2026-06-06 |
1.89.0rc1 | High risk | 72 | 2026-06-06 |
1.88.0rc3 | High risk | 72 | 2026-06-05 |
1.88.0rc2 | High risk | 72 | 2026-06-04 |
1.87.1 | High risk | 72 | 2026-06-04 |
1.86.4 | High risk | 72 | 2026-06-04 |
1.85.4 | High risk | 72 | 2026-06-04 |
1.84.5 | High risk | 72 | 2026-06-04 |
1.86.3 | High risk | 72 | 2026-06-03 |
1.87.0 | High risk | 72 | 2026-06-02 |
1.85.3 | High risk | 72 | 2026-06-02 |
1.88.0rc1 | High risk | 92 | 2026-05-31 |
1.84.4 | High risk | 92 | 2026-05-31 |
1.88.0.dev1 | High risk | 72 | 2026-05-30 |
1.84.3 | High risk | 72 | 2026-05-30 |
1.86.2 | High risk | 72 | 2026-05-30 |
1.85.2 | High risk | 72 | 2026-05-30 |
1.84.2 | High risk | 72 | 2026-05-30 |
1.87.0rc2 | High risk | 72 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem pypi litellm==1.84.9