A malicious supply chain compromise has been identified in the Python Package Index package **litellm** version 1.82.8. The published wheel contains a malicious `.pth` file (`litellm_init.pth`, 34,628 bytes) which is automatically executed by the Python interpreter on every startup, without requiring any explicit import of the **litellm** module. This allows for stealthy and persistent malware execution. Securing Critical Libraries The incident highlights the urgent need for robust security measures within open-source ecosystems. Initiatives like Software Bill of Materials (SBOMs), Supply-chain Levels for Software Artifacts (SLSA), and Sigstore are crucial for verifying the integrity and provenance of software components. While implementation may be complex, these measures are essential to mitigating supply chain risks. This compromise serves as a stark reminder of the vulnerabilities inherent in software supply chains and the importance of proactive security measures.