https://madajczyk.com/tags/zkml/Recent content in Zkml on Lee MadajczykHugoen-usFri, 03 Apr 2026 00:00:00 +0000https://madajczyk.com/archive/2026/04/03/the-agent-did-what/Fri, 03 Apr 2026 00:00:00 +0000https://madajczyk.com/archive/2026/04/03/the-agent-did-what/<p><a href="https://madajczyk.com/archive/2026/03/28/familiar-security-failures-ai-acceleration/">Last week</a> I wrote about an attack surface that&rsquo;s becoming more and more important: routing and orchestration layers that accumulate credentials and privilege while operating below the security threshold anyone has actually set for them. <a href="https://www.itpro.com/security/litellm-pypi-compromise-everything-we-know-so-far">LiteLLM</a> was the clearest example: a routing library holding API keys for every model it touches, compromised through PyPI, <a href="https://www.securityweek.com/mercor-hit-by-litellm-supply-chain-attack/">4TB exfiltrated</a> from Mercor. The argument was that these layers are trusted implicitly yet also monitored poorly, and that the security failures compromising them aren&rsquo;t new.</p>