a secure dotenv–from the creator of `dotenv`
100%
Total Score
100
97
100
100
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-10538 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. @dotenvx/dotenvx is vulnerable to OS command injection in versions 1.24.0 - 1.61.5. | 1.24.0 - 1.61.5 | High |
| Dependency | Last Release | Score |
|---|---|---|
yocto-spinner Version ^1.2.1 | — | — |
@dotenvx/tooling Version ^1.0.2 | — | — |
@dotenvx/primitives Version ^1.8.1 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant