LiteLLM logo

LiteLLM

#802 · by BerriAI
framework
3.24/ 5.00
trustedBeta
Mar 3, 2026 at 7:21 AM6 signals analysed100 commits (90d)No manual reviews · fully automated
Trust Signal Breakdown
high3 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

3 of 3 sub-signals with data

Known CVEs40%4.0

14 CVE(s) found — 0 unpatched

via OSV.dev

Dependency Health30%3.0

51 dependencies (moderate)

via npm / PyPI

Supply Chain30%4.8

207 transitive CVEs found (penalty: -0.25)

via npm provenance

Uptime, latency, error rates, and incident history

0 of 0 sub-signals with data

Commit recency, release cadence, issue response, CI/CD

0 of 0 sub-signals with data

Downloads, stars, dependents, and growth trajectory

0 of 0 sub-signals with data

License, documentation, security policy, changelog

0 of 0 sub-signals with data

Track record, org maturity, community standing

0 of 0 sub-signals with data

About this score
Scored across 3 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)
Trust AssessmentAI Assessment

Library to easily interface with LLM API providers

Package Availability (30d)
100.00%
p50: 45ms · p99: 69ms
Avg Latency
47ms
averaged across 30d health checks
Weekly Downloads
21.5M
PyPI weekly
Transparency & Compliance4/5 passed
Open Source CodePublic repository on GitHub
OSI LicenseNo recognized open-source license
DocumentationREADME with examples/code blocks
SECURITY.mdNo security policy found
API DocumentationOpenAPI spec or docs directory found
Incidents & Alertslast 90 days
Mar 1Trust score decreased by 0.673.24
Feb 25Critical CVE detected — patched in v1.34.423.91
Feb 25Critical CVE detected — patched in v1.34.423.91
Feb 25Critical CVE detected — patched in v1.34.423.91
Feb 25Critical CVE detected — patched in v1.34.423.91
Feb 25Critical CVE detected — patched in v1.34.423.91
Showing 6 of 14 events
Score History15 snapshots
5.003.752.501.250.00
Feb 23Mar 1
Community & Ecosystemadoption signals
21.5M
Weekly Downloads
PyPI
100
Commits (90d)
litellm
10
Releases
on GitHub
Supply Chain & Dependenciestrust chain
a2a-sdk
pypi · <0.4.0,>=0.3.22; python_version >= "3.10" and extra == "extra-proxy"
aiohttp
pypi · >=3.10 · 31 CVEs30L1M
apscheduler
pypi · <4.0.0,>=3.10.4; extra == "proxy"
azure-identity
pypi · <2.0.0,>=1.15.0; python_version >= "3.9" and (extra == "proxy" or extra == "extra-proxy") · 1 CVE1L
azure-keyvault-secrets
pypi · <5.0.0,>=4.8.0; extra == "extra-proxy"
azure-storage-blob
pypi · <13.0.0,>=12.25.1; extra == "proxy" · 1 CVE1L
Showing 6 of 50 dependencies
Data Sources6 indexed
OSV.devCVE database · vulnerability scanning for npm & PyPI packages
GitHub APICommits, issues, releases, repo metadata, transparency checks
npm RegistryPackage metadata, weekly downloads, maintainers, dependencies
PyPIPackage metadata, weekly downloads, dependency tree
HTTP Health Checks15-min pings · uptime, latency, status monitoring
PyPI StatsDownload statistics and trends
Version Historyscore per release
VERSIONRELEASEDSCOREDELTA
v1.81.6.rc.5Feb 24, 20263.81
v1.81.6.rc.4Feb 24, 20263.81
v1.81.12-stable.1Feb 24, 20263.81
v1.81.12-stable_gpt-5.3Feb 24, 20263.81
v1.81.15-nightlyFeb 24, 20263.81
litellm-v1.81.14.pre-call-hook-fix.devFeb 24, 20263.81
Showing 6 of 10 releases

Are you the publisher?

Claim this profile to unlock deeper evaluation, real-time monitoring,
and trust signals that help agents discover your service.

Share this Trust Score

Generate a scorecard image optimised for X, LinkedIn and other social platforms.

⬇ Download Score Card