Only the latest minor release of the LiteLLM Operator receives security fixes. Older releases do not receive backported security patches; upgrade to the latest release to receive fixes.
| Version | Supported |
|---|---|
| latest (main) | ✅ |
| < latest | ❌ |
Please do not file public GitHub issues for security vulnerabilities.
Report vulnerabilities via one of the following channels:
- GitHub Security Advisories — preferred. Use the Security → Report a vulnerability form on this repository.
- Email —
[email protected]for issues that cannot be reported via GitHub.
Please include:
- A description of the vulnerability and its potential impact
- Steps to reproduce or proof-of-concept code
- Affected versions
- Any suggested mitigations
| Severity | Initial response | Fix target |
|---|---|---|
| Critical | Within 48 hours | 7 days |
| High | Within 7 days | 30 days |
| Medium | Within 14 days | Next release |
| Low | Within 30 days | Best-effort |
We follow coordinated disclosure. Once a fix is available, we will:
- Publish a GitHub Security Advisory with a CVE identifier when appropriate
- Credit the reporter (unless anonymity is requested)
- Release a patched version and update
latesttagged images
Each published release includes:
- Signed container images — operator and OLM bundle images are signed with cosign keyless signing via GitHub OIDC
- SLSA provenance — build provenance attestations generated by Docker Buildx
- SBOM — CycloneDX software bill of materials for each image
- Vulnerability scan report — Trivy HIGH/CRITICAL scan output
- License inventory —
go-licensesandscancode-toolkitoutputs attached as release assets for regulated-industry procurement review
To verify an image signature:
cosign verify \
--certificate-identity-regexp 'https://github.com/PalenaAI/litellm-operator/' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
ghcr.io/palenaai/litellm-operator:<tag>