May Townhall Updates: Security Hardening, Release Versioning, and the Agent Platform
Thank you to everyone who joined our May town hall.
We covered security hardening, release versioning changes, new product launches (MCP toolsets, on-behalf-of OAuth), performance wins, and our biggest bet yet β the LiteLLM Agent Platform.
Security updatesβ
v1.84.1 ships the security hardeningβ
All security fixes from the last 4 weeks are bundled in v1.84.1 β a patch on top of v1.84.0. Upgrade when you can.
pip install --upgrade litellm
- Backwards-compatible with v1.83.x configs.
- New release versioning scheme (see below).
Bug bounty β now liveβ
We now pay for security reports.
- Scope β the LiteLLM gateway and SDK.
- Submit via private vulnerability report on GitHub.
- Triaged by maintainers and Veria Labs security team.
Automated security review on every PRβ
Every PR now gets an automated security pass via Veria AI + zizmor + semgrep. Look for the Veria scan β it's a required check. False positives are flagged, never blocking.
Last 4 weeks: by the numbersβ
| Metric | Count |
|---|---|
| Vulnerabilities patched | 89 |
| Reported by Veria scanner | 78 |
| GHSAs fixed | 58 |
| GHSAs closed | 96 |
All fixes ship in v1.84.1.
What's next for securityβ
- Improve GHSA triage and validation process.
- Further CI pipeline improvements.
- Add zizmor to sister projects (project-releaser).
- Define support window for prior releases.
Stability updatesβ
Release versioning β the problemβ
Too many version suffixes: -nightly, -dev, -stable, -stable-patch. Weekly stable bumps left no room for hotfixes, and users filtering -stable in search still had to wade through releases.
New versioning from v1.84.0β
Release versions are now consistent across PyPI and Docker.
- No more
-stableβ stable releases follow PEP-440 / SemVer 2.0. They now read asv1.84.0. - Minor bumps weekly β each scheduled stable release bumps the MINOR version, not PATCH.
- Patch for hotfixes β when
v1.84.0needs a fix, it becomesv1.84.1.
What's next for stabilityβ
- EKS multi-pod internal deployment.
- Catch deployment regressions and Claude Code changes.
- Higher code coverage β 70% on 5 hotspot regression files.
- Goal: minimal regressions per stable release.
Product updatesβ
What we launchedβ
Routing & Memory
- Adaptive Routing
- Memory Management (beta)
- Prompt Compression
MCP
- MCP Toolsets
- On-behalf-of MCP OAuth
Quality & Safety
- LLM-as-a-judge guardrails
- Skills Marketplace
MCP Toolsetsβ
MCP Toolsets let you combine tools across multiple MCP servers into a single flat list. An agent sees one tool list instead of juggling multiple servers.
Tools are name-scoped, so collisions across servers are safe.
Example: A "deploy-flow" toolset might combine create_issue from GitHub MCP, post_message from Slack MCP, and create_ticket from Jira MCP β all surfaced to the agent as one tool list.
MCP on-behalf-of OAuthβ
OAuth tokens are vaulted at the proxy β never returned to the client.
- The client sends requests without a token.
- LiteLLM adds the token when calling the downstream MCP server.
- Refresh happens transparently. The client never sees a 401.
What's next for productβ
- MCP β store static user credentials.
- Claude Code β auto-update header compatibility chart.
- Reasoning level support across models and providers.
- Full Bedrock Converse support in Claude Code.
Performance winsβ
20% RPS + TPM improvementβ
Streaming /chat/completions now handles 20% more requests per second and tokens per minute.
Shipped optimizationsβ
What's next for performanceβ
- Rust migration in flight β stable 1K+ RPS at 10k concurrency.
- Focus on reducing gateway overhead under high load.
- Tracking: TTFT, TPM (streaming); RPS, overhead % of E2E (non-streaming).
Product roadmap: the LiteLLM Agent Platformβ
Our betβ
We believe 80% of AI workloads will be agents within the next 3 years.
Signals we're seeing:
- OpenClaw usage explosion
- Enterprise asks shifting from chat to agents
- Claude Code adoption tracking up
LiteLLM Agent Platform β run agents you can actually governβ
Four pillars. One control plane.
- Agent Templates β pre-built configs for common tasks.
- Skills β upload and reuse skills across agents.
- Projects β repos + env vars, packaged for reuse.
What's nextβ
Thank you again for all the questions and feedback. We'll keep sharing concrete progress updates as these efforts ship.
Hiringβ
We are actively hiring across several roles β apply here if you're interested!

