Discussion: How the LiteLLM .pth backdoor works and how I'm auditing MCP servers for it (Open Source Go Scanner)

Saw an interesting discussion on r/LocalLLaMA about this — wanted to bring it here. **Original topic:** How the LiteLLM .pth backdoor works and how I'm auditing MCP servers for it (Open Source Go Scanner) > Hey folks, Like many of you, I've been digging into the **LiteLLM (v1.82.7/8)** supply chain attack. The use of malicious `.pth` files is a clever (and terrifying) way to achieve code execution on Python startup without a single `import` statement. For those of us building/using MCP (Model Context... What are your thoughts? Has anyone here dealt with MCP server? --- *Discuss more at [0n MCP](https://www.0nmcp.com) — the hub for [agentic AI orchestration](https://www.0nmcp.com).*