Another PyPI package got compromised — here's why I stopped relying on multi-provider AI SDKs
python
dev.to
Another PyPI package got compromised — here's why I stopped relying on multi-provider AI SDKs The Telnyx Python SDK was compromised on PyPI today. This is the second major AI/telecom SDK supply chain attack in two weeks. LiteLLM was hit before that. If you haven't noticed the pattern yet, you should. What happened with Telnyx The Telnyx package on PyPI was backdoored. If you ran pip install telnyx in the last 24 hours, you may have pulled malicious code onto your machine