Commit Graph

31 Commits

Author SHA1 Message Date
Yuta Saito f8e25aa016 chore: add ALLOWED_CVES. Because Wolfi glibc still flagged even on 2.42-r5. 2026-01-16 18:23:09 +09:00
Yuta Saito 4e78394b21 chore: address jaraco.context path traversal vulnerability (GHSA-58pv-8j8x-9vj2) 2026-01-16 14:20:24 +09:00
Yuta Saito 94e15a92b2 chore: add zlib to allow list 2026-01-16 11:41:54 +09:00
Yuta Saito e5991e5222 chore: document temporary grype ignore for CVE-2026-22184 2026-01-16 11:19:10 +09:00
Yuta Saito 4daac9e332 chore: add ALLOWED_CVES 2026-01-13 10:30:34 +09:00
Yuta Saito 54b21cabf7 chore: add config option 2026-01-13 10:19:12 +09:00
Yuta Saito a0e0026df0 chore: document temporary grype ignore for CVE-2019-1010022 2026-01-13 10:09:23 +09:00
Ishaan Jaffer bdbbc9db62 run_secret_detection 2026-01-07 16:43:31 +05:30
Ishaan Jaffer 49f4005001 fix 2026-01-07 15:07:32 +05:30
Alexsander Hamir 936aa6821f [Fix] CI/CD - litellm_security_tests (#18567) 2026-01-01 14:20:04 -08:00
Alexsander Hamir 5534038e93 Fix CI: Revert security scan changes and add GitGuardian ignore rules (#18358) 2025-12-22 17:03:53 -08:00
Ishaan Jaffer bae488d9cd skip GITGUARDIAN_API_KEY 2025-12-20 20:53:22 +05:30
Ishaan Jaffer 6112160a16 Revert "[Fix] Security - Remove example API keys with high entropy (#18255)"
This reverts commit 24edbccf5c.
2025-12-20 20:48:11 +05:30
Alexsander Hamir 24edbccf5c [Fix] Security - Remove example API keys with high entropy (#18255) 2025-12-19 10:09:50 -08:00
Alexsander Hamir 4134fab74d add: new security scan (#18148) 2025-12-17 12:53:15 -08:00
Ishaan Jaffer 8539aac85a fix scans 2025-12-06 15:53:49 -08:00
Ishaan Jaffer 2f0ec47426 GHSA-5j98-mcp5-4vw2 fix 2025-11-22 12:12:28 -08:00
Ishaan Jaffer a4e0869077 fix scan 2025-10-11 11:38:43 -07:00
Ishaan Jaffer 34579b640e fix sec san 2025-10-11 10:15:35 -07:00
Ishaan Jaffer 2bce4ab74d fix: sec scans 2025-10-11 09:34:48 -07:00
Ishaan Jaffer 13b0e97759 ALLOWED_IDS_JSON sec scan 2025-09-27 17:15:28 -07:00
Ishaan Jaffer fbc5b73431 fix sec scans 2025-09-26 19:44:57 -07:00
Ishaan Jaff ac2d349161 [Security] Ensure LiteLLM Images have 0 Critical, High, Medium vulnerabilities with CVSS ≥ 4.0 (#14357)
* updated scans

* fix scans

* fix litellm_security_tests

* fix

* fix count CVEE

* add readme

* fix Security Scans

* fix: starlette==0.47.2 # starlette fastapi dep

* bump fastapi==0.115.14

* bump 0.116.1
2025-09-08 16:49:52 -07:00
Krish Dholakia 1604f87663 install prisma migration files - connects litellm proxy to litellm's prisma migration files (#9637)
* build(README.md): initial commit adding a separate folder for additional proxy files. Meant to reduce size of core package

* build(litellm-proxy-extras/): new pip package for storing migration files

allows litellm proxy to use migration files, without adding them to core repo

* build(litellm-proxy-extras/): cleanup pyproject.toml

* build: move prisma migration files inside new proxy extras package

* build(run_migration.py): update script to write to correct folder

* build(proxy_cli.py): load in migration files from litellm-proxy-extras

Closes https://github.com/BerriAI/litellm/issues/9558

* build: add MIT license to litellm-proxy-extras

* test: update test

* fix: fix schema

* bump: version 0.1.0 → 0.1.1

* build(publish-proxy-extras.sh): add script for publishing new proxy-extras version

* build(liccheck.ini): add litellm-proxy-extras to authorized packages

* fix(litellm-proxy-extras/utils.py): move prisma migrate logic inside extra proxy pkg

easier since migrations folder already there

* build(pre-commit-config.yaml): add litellm_proxy_extras to ci tests

* docs(config_settings.md): document new env var

* build(pyproject.toml): bump relevant files when litellm-proxy-extras version changed

* build(pre-commit-config.yaml): run poetry check on litellm-proxy-extras as well
2025-03-29 15:27:09 -07:00
Krish Dholakia cdcc8ea9b7 Connect UI to "LiteLLM_DailyUserSpend" spend table - enables usage tab to work at 1m+ spend logs (#9603)
* feat(spend_management_endpoints.py): expose new endpoint for querying user's usage at 1m+ spend logs

Allows user to view their spend at 1m+ spend logs

* build(schema.prisma): add api_requests to dailyuserspend table

* build(migration.sql): add migration file for new column to daily user spend table

* build(prisma_client.py): add logic for copying over migration folder, if deploy/migrations present in expected location

enables easier testing of prisma migration flow

* build(ui/): initial commit successfully using the dailyuserspend table on the UI

* refactor(internal_user_endpoints.py): refactor `/user/daily/activity` to give breakdowns by provider/model/key

* feat: feature parity (cost page) with existing 'usage' page

* build(ui/): add activity tab to new_usage.tsx

gets to feature parity on 'All Up' page of 'usage.tsx'

* fix(proxy/utils.py): count number of api requests in daily user spend table

allows us to see activity by model on new usage tab

* style(new_usage.tsx): fix y-axis to be in ascending order of date

* fix: fix linting errors

* fix: fix ruff check errors
2025-03-27 23:29:15 -07:00
Krrish Dholakia 72c0ad419f build(migration.sql): add migration file for new dailyusertable
documents prisma db changes
2025-03-26 17:11:25 -07:00
Krish Dholakia 132d3f7baa feat(prisma-migrations): add baseline db migration file (#9565)
adds initial baseline db migration file

enables future schema changes to be documented via .sql files
2025-03-26 16:22:56 -07:00
Ishaan Jaff d742e8cb43 (clean up) move docker files from root to docker folder (#6109)
* fix move docker files to docker folders

* move check file length

* fix docker hub deploy
2024-10-08 08:23:52 +05:30
ishaan-jaff 70f36073dc (fix) pre commit hook to sync backup context_window mapping 2024-02-05 15:03:04 -08:00
ishaan-jaff 8b571159fc (feat) add pre-commit hook to check model_prices_and_context_window.json litellm/model_prices_and_context_window_backup.json 2024-02-05 15:00:13 -08:00
ishaan-jaff a6836a0996 (feat) pre-commit hook to validate 2024-02-05 14:42:10 -08:00