Verify Docker Image Signature
All LiteLLM Docker images are signed with cosign. Every release is signed with the same key introduced in commit 0112e53.
Verify using the pinned commit hash (recommended):
A commit hash is cryptographically immutable, so this is the strongest way to ensure you are using the original signing key:
cosign verify \
--key https://raw.githubusercontent.com/BerriAI/litellm/0112e53046018d726492c814b3644b7d376029d0/cosign.pub \
ghcr.io/berriai/litellm:v1.83.2-nightlyVerify using the release tag (convenience):
Tags are protected in this repository and resolve to the same key. This option is easier to read but relies on tag protection rules:
cosign verify \
--key https://raw.githubusercontent.com/BerriAI/litellm/v1.83.2-nightly/cosign.pub \
ghcr.io/berriai/litellm:v1.83.2-nightlyExpected output:
The following checks were performed on each of these signatures:
- The cosign claims were validated
- The signatures were verified against the specified public key
What's Changed
- docs(blog): add security hardening April 2026 post (#25101) by @ishaan-berri in #25102
- Litellm ishaan april1 try2 by @ishaan-berri in #25110
- bump: version 1.83.1 → 1.83.2 by @ishaan-berri in #25112
- bump litellm-proxy-extras to 0.4.64 by @ishaan-berri in #25121
Full Changelog: v1.83.1-nightly...v1.83.2-nightly