Security Advisories - datahihi1/tiny-env - Packagist

datahihi1/tiny-env Security Advisories for 1.0.9 (2)

[MEDIUM] TinyEnv: Inline comments not stripped properly in .env values

PKSA-tn7z-9596-kh7x CVE-2025-58759 GHSA-72cm-7236-h43r

Affected version: >=1.0.9,<1.0.11

Reported by:
GitHub
[MEDIUM] TinyEnv: Missing .env file not required — may cause unexpected behavior

PKSA-78qj-g4s3-vxq4 CVE-2025-58758 GHSA-3j7m-5g4q-gfpc

Affected version: >=1.0.9,<1.0.11|<1.0.3

Reported by:
GitHub