The framework for programming—rather than prompting—language models.
I don't see any actual review content or social media mentions in your message - the sections appear to be empty except for a single Hacker News thread title. Based on just that title "If DSPy is so great, why isn't anyone using it?", it suggests there may be skepticism about DSPy's adoption despite its purported capabilities. To provide a meaningful summary of user sentiment, I would need the actual review content and social media discussions you'd like me to analyze.
Mentions (30d)
1
Reviews
0
Platforms
3
GitHub Stars
33,311
2,742 forks
I don't see any actual review content or social media mentions in your message - the sections appear to be empty except for a single Hacker News thread title. Based on just that title "If DSPy is so great, why isn't anyone using it?", it suggests there may be skepticism about DSPy's adoption despite its purported capabilities. To provide a meaningful summary of user sentiment, I would need the actual review content and social media discussions you'd like me to analyze.
2,504
GitHub followers
53
GitHub repos
33,311
GitHub stars
7
npm packages
23
HuggingFace models
If DSPy is so great, why isn't anyone using it?
View originalPricing found: $2
[D] Litellm supply chain attack and what it means for api key management
If you missed it, litellm versions 1.82.7 and 1.82.8 on pypi got compromised. malicious .pth file that runs on every python process start, no import needed. it scrapes ssh keys, aws/gcp creds, k8s secrets, crypto wallets, env vars (aka all your api keys). karpathy posted about it. the attacker got in through trivy (a vuln scanner ironically) and stole litellm's publish token. 2000+ packages depend on litellm downstream including dspy and mlflow. the only reason anyone caught it was because the malicious code had a fork bomb bug that crashed machines. This made me rethink how i manage model api keys. having keys for openai, anthropic, google, deepseek all sitting in .env files across projects is a massive attack surface. switched to running everything through zenmux a while back so theres only one api key to rotate if something goes wrong. not a perfect solution but at least i dont have 6 different provider keys scattered everywhere. Run pip show litellm right now. if youre on anything above 1.82.6 treat it as full compromise. submitted by /u/Zestyclose_Ring1123 [link] [comments]
View originalIf DSPy is so great, why isn't anyone using it?
View originalRepository Audit Available
Deep analysis of stanfordnlp/dspy — architecture, costs, security, dependencies & more
Pricing found: $2
DSPy has a public GitHub repository with 33,311 stars.
Andrej Karpathy
Former VP of AI at Tesla / OpenAI
1 mention
