Change8

v1.83.5-nightly

📦 litellmView on GitHub →
9 features🐛 17 fixes🔧 2 symbols

Summary

This release introduces Docker image signing verification via cosign and adds significant features to the UI and Proxy, including project-level guardrails and Azure Entra ID credential support. Several bug fixes address issues related to UI filtering, team management, and Docker image loading.

Migration Steps

  1. To verify Docker image authenticity, use the provided cosign verification commands, preferably using the pinned commit hash for maximum security.

✨ New Features

  • Added support for verifying LiteLLM Docker image signatures using cosign.
  • Implemented project-level guardrails support in LiteLLM Proxy.
  • Added support for resolving access group resources in team endpoints.
  • Added guardrails support to project create/edit forms in the UI.
  • Exposed Azure Entra ID credential fields in the provider form in the UI.
  • Added per-model rate limits configuration to team edit/info views in the UI.
  • Allowed adding team guardrails from the UI.
  • Added POST /team/permissions_bulk_update endpoint.
  • Added AWS Gov Cloud mode support.

🐛 Bug Fixes

  • Fixed team_id filter wiring to the key alias dropdown on the Virtual Keys tab in the UI.
  • Fixed paginated team search on the usage page filter in the UI.
  • Fixed allowing changing team organization from team settings in the UI.
  • Preserved JSON-RPC envelope for AgentCore A2A-native agents.
  • Fixed not injecting vector_store_ids: [] when editing a model in the UI.
  • Fixed enterprise hooks loading in non-root runtime Docker image.
  • Fixed Team Model Update 500 error due to unsupported Prisma JSON Path Filter.
  • Fixed Team Model Group Name routing.
  • Fixed usage export display to use entity key.
  • Fixed GCP Caching issue related to MCP Toolsets.
  • Fixed tag query issue and added MCP metadata support.
  • Fixed batch-limit stale managed object cleanup to prevent large UPDATE operations.
  • Updated check_responses_cost tests for _expire_stale_rows.
  • Fixed Dockerfile.non_root to handle missing .npmrc gracefully.
  • Allowed JWT override OAuth2 routing without global OAuth2 enablement.
  • Refactored /v2/key/info response handling to align with v1.
  • Fixed node-gyp symlink path after npm upgrade in Dockerfile.

Affected Symbols

cosign_expire_stale_rows