critical AI Issue
LiteLLM/Trivy/KICS Supply Chain Compromise (TeamPCP)
| Severity | critical |
| Status | open |
| Date | March 24, 2026 |
| Affects | LiteLLM (3.4M daily downloads), Trivy, KICS, Telnyx |
| Source | semgrep.dev |
Details
TeamPCP compromised four major open-source projects in rapid succession (March 19-27). Malicious versions harvest AWS/GCP/Azure tokens, SSH keys, and Kubernetes credentials. Three-stage payload with persistent backdoor.