Severity
Low
Description
Package accesses environment variables, which may be a sign of credential stuffing or data theft.
Suggestion
Packages should be clear about which environment variables they access, and care should be taken to ensure they only access environment variables they claim to.
Packages with this alert
All the benefits of npm scripts without the cost of a bloated package.json and limits of json
Simple pseudolocale (psuedolocalization) for strings
A well-tested library that lets you get trophy, user, and game data from the PlayStation Network.