[MEDIUM] TinyEnv: Inline comments not stripped properly in .env values

PKSA-tn7z-9596-kh7x CVE-2025-58759 GHSA-72cm-7236-h43r

Affected package: datahihi1/tiny-env

Affected version: >=1.0.9,<1.0.11

Reported by:
GitHub