Exciting news!Announcing our $4.6M Series Seed. Learn more
Socket
LoveBlogFAQ
Install
Log in

Environment variable access

Severity

Low

Description

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Suggestion

Packages should be clear about which environment variables they access, and care should be taken to ensure they only access environment variables they claim to.


Packages with this issue

Socket

Product

Subscribe to our newsletter

Get open source security insights delivered straight into your inbox. Be the first to learn about new features and product updates.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc