Security: Remove Litellm (#750)

AkhileshNegi · web-flow · commit 945f4f8a8b02 · 2026-04-14T12:39:19.000+05:30
diff --git a/backend/app/models/llm/constants.py b/backend/app/models/llm/constants.py
@@ -32,6 +32,9 @@
     ],
 }
 
+# OpenAI models that support reasoning (effort parameter)
+OPENAI_REASONING_MODELS: set[str] = {"o1", "o1-preview", "o1-mini"}
+
 SUPPORTED_VOICES = {
     ("google", "tts"): ["Kore", "Orus", "Leda", "Charon"],
     ("sarvamai", "tts"): ["simran", "shubh", "roopa"],
diff --git a/backend/app/services/llm/mappers.py b/backend/app/services/llm/mappers.py
@@ -1,4 +1,3 @@
-import litellm
 import logging
 
 from app.models.llm import KaapiCompletionConfig, NativeCompletionConfig
@@ -7,6 +6,7 @@
     BCP47_TO_ELEVENLABS_LANG,
     ELEVENLABS_VOICE_TO_ID,
     DEFAULT_TTS_VOICE,
+    OPENAI_REASONING_MODELS,
 )
 
 logger = logging.getLogger(__name__)
@@ -67,7 +67,7 @@ def map_kaapi_to_openai_params(kaapi_params: dict) -> tuple[dict, list[str]]:
     knowledge_base_ids = kaapi_params.get("knowledge_base_ids")
     max_num_results = kaapi_params.get("max_num_results")
 
-    support_reasoning = litellm.supports_reasoning(model=f"openai/{model}")
+    support_reasoning = model in OPENAI_REASONING_MODELS
 
     # Handle reasoning vs temperature mutual exclusivity
     if support_reasoning:
diff --git a/backend/pyproject.toml b/backend/pyproject.toml
@@ -53,6 +53,8 @@ override-dependencies = [
     "cryptography>=46.0.5",
     "werkzeu>=3.1.6",
     "pypdf>=3.9.0",
+    # Pinned: avoid supply chain attack in litellm 1.82.7/1.82.8 (Mar 2026)
+    "litellm==1.82.1",
 ]
 dev-dependencies = [
     "pytest<8.0.0,>=7.4.3",
diff --git a/backend/uv.lock b/backend/uv.lock

Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,9 @@`
`32`	`32`	`],`
`33`	`33`	`}`
`34`	`34`
	`35`	`+# OpenAI models that support reasoning (effort parameter)`
	`36`	`+OPENAI_REASONING_MODELS: set[str] = {"o1", "o1-preview", "o1-mini"}`
	`37`	`+`
`35`	`38`	`SUPPORTED_VOICES = {`
`36`	`39`	`("google", "tts"): ["Kore", "Orus", "Leda", "Charon"],`
`37`	`40`	`("sarvamai", "tts"): ["simran", "shubh", "roopa"],`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,8 @@ override-dependencies = [`
`53`	`53`	`"cryptography>=46.0.5",`
`54`	`54`	`"werkzeu>=3.1.6",`
`55`	`55`	`"pypdf>=3.9.0",`
	`56`	`+ # Pinned: avoid supply chain attack in litellm 1.82.7/1.82.8 (Mar 2026)`
	`57`	`+ "litellm==1.82.1",`
`56`	`58`	`]`
`57`	`59`	`dev-dependencies = [`
`58`	`60`	`"pytest<8.0.0,>=7.4.3",`