A threat actor pushed two malware-laced versions of LiteLLM to a central repository where Python developers fetch open-source ...