+3
-0
@@ -5,1 +5,4 @@ PORT=8080 | ||
| DB=user@foobar.com/corge | ||
| DBSET=mongodb://user:pass@foobar.com:4000,barfoo.com:5000/corge?replicaSet=rs-ds012345 | ||
| DQUOTE="this is quoted" | ||
| SQUOTE='this is also quoted' |
+1
-1
@@ -21,4 +21,4 @@ var read = require("fs").readFileSync; | ||
| row = doc[i].split(/\s*=\s*/); | ||
| process.env[row[0]] = row[1]; | ||
| process.env[row.shift()] = row.join('=').replace(/['"]/g,''); | ||
| } | ||
| } |
+1
-1
| { | ||
| "name": "with-env", | ||
| "version": "0.1.0", | ||
| "version": "0.1.1", | ||
| "description": "Read and apply .env file if exists in the working directory", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
1382
14.12%