AuthorMaksim Danilchenko
RoleEngineering Lead, inDrive
Cadence3โ€“5 long-form / week

Notes on shipping
software in 2026.

Long-form on AI engineering, dev tools, agentic pipelines, and the parts of indie hacking that survive contact with production.

github ยท linkedin ยท email ยท rss
latest 17.jan.2026 ยท 11 min

tutorials

LiteLLM Vulnerability: 6 CVEs, a Supply Chain Attack, and the Fixes

LiteLLM has been hit by RCE, SQL injection, privilege escalation, and a PyPI supply chain attack in 2026. Here's every CVE, who's affected, and how to fix it.

filed under tutorials tags litellm ยท ai-security ยท vulnerability 11 min read
recent.writing all posts โ†’
subscribe weekly ยท no spam

The briefing.

Long-form posts in your inbox roughly once a week โ€” research breakdowns, tutorials, comparisons, the occasional review. No tracking pixels, no growth-hacked subject lines.

Or grab the RSS feed โ€” same posts, no email needed.

ls topics/ 6 directories
namepostsaboutupdated
research 17 papers, but readable โ€” algorithms, AI, systems 5 jun tutorials 15 python, go, things I actually built and shipped 17 jun comparisons 16 x vs y vs z โ€” benchmarks, pricing, real DX 16 jun reviews 11 AI dev tools and models, after real use 12 jun careers 9 tech hiring data, EU/Cyprus angle, salary reports 3 jun programming 2 language deep-dives, idioms, the traps that bite 13 apr
about full bio โ†’

I'm Maksim. By day I lead an engineering team at inDrive. After hours I ship side projects (PageBloom, NotesPilot, MyDevKit, startgaze) and write things up here when I learn something worth keeping.

The blog itself runs on an agentic publishing pipeline I built and rebuilt โ€” a slow-moving experiment in how much of a writer's workflow can be automated without losing the voice. It writes, fact-checks, and refreshes; I edit, decide, and publish.

elsewhere

โ†’githubmaximdanilchenko โ†’linkedin/in/maximdanilchenko โ†’emaildmax.dev@gmail.com โ†’telegram@hiimmax โ†’rss/index.xml