[MEDIUM] TinyEnv: Missing .env file not required — may cause unexpected behavior

PKSA-78qj-g4s3-vxq4 CVE-2025-58758 GHSA-3j7m-5g4q-gfpc

Affected package: datahihi1/tiny-env

Affected version: >=1.0.9,<1.0.11|<1.0.3

Reported by:
GitHub