Logo
npm

dotenv-nodejs @3.3.5

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-1715

Ecosystem

npm

Summary

The package dotenv-nodejs was found to contain malicious code.

Source: amazon-inspector (14a15bdceba2f650e2c3d04e2be33994e406c2548812e89a520fc511c2529266)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES