LiteLLM, the developer behind a widely used AI gateway, has officially severed ties with compliance startup Delve. The company announced it will undergo a complete audit process with new partners following a severe credential-stealing malware attack that compromised its open-source platform last week.
Security Crisis Triggers Immediate Pivot
The decision to abandon Delve comes in the wake of a damaging security incident that exposed vulnerabilities in LiteLLM’s infrastructure. Prior to the breach, the company had relied on Delve to secure two key compliance certifications—documents intended to prove that robust procedures were in place to mitigate operational risks.
However, the efficacy of those certifications has been called into question. LiteLLM CTO Ishaan Jaffer confirmed on X that the company is taking immediate corrective action to restore user trust.
Allegations of Fraud Against Delve
Delve is currently embroiled in a controversy involving accusations of deceptive business practices. Reports suggest the startup allegedly generated fabricated compliance data and utilized auditors who provided “rubber-stamp” approvals without rigorous verification.
While Delve’s founder has formally denied these claims and offered complimentary re-testing to existing clients, the situation escalated significantly when an anonymous whistleblower released alleged documentation over the weekend to support the accusations of malpractice.
LiteLLM’s Path to Remediation
In response to the fallout, LiteLLM is moving forward with a new strategy to ensure the integrity of its security protocols. The company has publicly committed to the following steps:
- Transitioning to Vanta, a direct competitor in the compliance space, to manage new certification processes.
- Appointing an independent, third-party auditor to conduct a comprehensive review of all current compliance controls.
By distancing itself from Delve, LiteLLM aims to reassure its millions of developer users that it is prioritizing platform security and regulatory transparency in the aftermath of the recent malware exploit.