See https://github.com/BerriAI/litellm/issues/24512.

The litellm==1.82.8 wheel package on PyPI contains a malicious .pth file (litellm_init.pth, 34,628 bytes) that automatically executes a credential-stealing script every time the Python interpreter starts — no import litellmrequired.

How the hell?