Severity
Low
Short Description
Package accesses environment variables, which may be a sign of credential stuffing or data theft.
Packages
View packages with this alert.Suggestion
Packages should be clear about which environment variables they access, and care should be taken to ensure they only access environment variables they claim to.