Built a pre-install scanner after watching litellm get backdoored via a .pth file that silently exfiltrates SSH keys, AWS creds, crypto wallets, Slack tokens. The TeamPCP
campaign hit 500+ packages including telnyx last week.
Tool is called CodeGuard Pro blocks at install time, not after. Open source, pip installable.
Post to r/netsec that's the right sub for this. Don't post to r/Python and r/programming at the same time, wait to see how r/netsec goes first.
reply