LiteLLM, a provider of an artificial intelligence (AI) gateway solution used by millions of developers, publicly said it has ended its relationship with security compliance startup Delve and will seek security certification again through another company.
TechCrunch reported on March 30 that the move came shortly after LiteLLM's open-source version was exposed last week to credential-stealing malware attacks.
LiteLLM previously hired Delve to obtain security compliance certification twice.
Delve faces allegations that it deceived customers about their actual compliance level by generating fake data and using auditors who conducted only formal reviews. Delve's founder denied the allegations and offered free retesting and re-audits to all customers.
LiteLLM Chief Technology Officer Ishaan Jaffer (이샨 재퍼) said on social media platform X (Twitter) that the company will pursue recertification through Delve rival Vanta and will directly select an independent third-party auditor to verify compliance control items.
Chi-gyu Hwang
delight@d-today.co.kr