AI gateway startup LiteLLM has terminated its business relationship with security compliance firm Delve amid ongoing allegations against the latter company. The decision comes as Delve faces continued scrutiny from a whistleblower making claims about the company's practices.

LiteLLM had previously obtained two security compliance certifications through Delve's services. However, the AI startup also experienced what it described as credential-stealing malware last week, though the timing and connection to the Delve relationship remains unclear.

The controversy surrounding Delve intensified when a whistleblower made initial allegations against the company. Delve's founder responded with a public denial of the claims while promising to implement changes to address concerns.

Following the founder's response, the same whistleblower came forward with additional alleged details about what they characterized as 'fake compliance' practices at Delve. The specific nature of these new allegations has not been detailed publicly.

The situation highlights growing scrutiny of security compliance providers in the AI industry, as companies increasingly rely on third-party certifications to demonstrate their security practices to customers and partners. LiteLLM's decision to distance itself from Delve reflects the potential reputational risks associated with such partnerships when controversies arise.