Sourcegraph Blog
2026-03-26 00:00 UTC
By Stephanie Jarmak
USR-0064-20260326-ai-specialis-e1af9dab
Detecting supply chain attacks at scale with Deep Search
Poisoned LiteLLM packages on PyPI started stealing credentials. Using Deep Search and Code Search, we traced which public repos were protected by version pinning and which were left exposed. Here's how—and how you can do the same for any supply chain incident.
Poisoned LiteLLM packages on PyPI started stealing credentials. Using Deep Search and Code Search, we traced which public repos were protected by version pinning and which were left exposed. Here's how—and how you can do the same for any supply chain incident.
Full article content could not be extracted automatically. Read the original below.