fix: CRITICAL: Hard pin litellm<=1.82.6 to mitigate supply chain attack

[udaymehta]

Description

There seems to be a vulnerability issue in the newer version of litellm (Malicious file is litellm_init.pth) and the owner's account is compromised, you can check the issue below.

Related Issues

Relates to BerriAI/litellm#24512

https://futuresearch.ai/blog/litellm-pypi-supply-chain-attack/

[udaymehta]

@pgrayy @zastrowm @mkmeral

[github-actions]

Assessment: Approve

This is an appropriate and necessary response to a critical supply chain attack affecting litellm versions 1.82.7 and 1.82.8. The change correctly pins the upper bound to 1.82.6, the last known safe version.

Review Summary

• Security: Change addresses the immediate threat by blocking installation of compromised versions
• Correctness: The <=1.82.6 constraint properly excludes 1.82.7 and 1.82.8
• Scope: Minimal, targeted change affecting only the litellm optional dependency

Thanks for the quick response on this security issue! 🛡️

[zastrowm]

I believe that the workflow failures might be because it's in quarantine: https://pypi.org/project/litellm/

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[udaymehta]

I believe that the workflow failures might be because it's in quarantine: https://pypi.org/project/litellm/

Looks like its fine now since the compromised versions are taken off for now.

Ready for merge.

[zastrowm]

Thanks for this @udaymehta.

Release v1.33.0 will have this change and is in progress: R​elease v1.33.0 · strands-agents/sdk-python