The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
CSOonline

Dependencies in LLM packages open apps to vulnerabilities: Report

Open-source packages with large language model (LLM) capabilities have many dependencies that make calls to security-sensitive APIs, according to a new Endor Labs report. As applications increasingly ...
InfoWorld

LiteLLM: An open-source gateway for unified LLM access

LiteLLM allows developers to integrate a diverse range of LLM models as if they were calling OpenAI’s API, with support for fallbacks, budgets, rate limits, and real-time monitoring of API calls. The ...
heise online

One API for all – Mozilla ends LLM chaos

With the Python package any-llm, Mozilla is releasing a unified API for many LLMs in version 1, which is already intended to be stable for production use. This relieves developers when using the ...