npm · registry.npmjs.org

dotenv-pack

no findings

Scanned versions

Version	Verdict	Scanned (UTC)
`0.0.1-security`	High risk	2026-06-10
`2.3.10`	High risk	2026-06-01
`2.3.11`	High risk	2026-06-01

Block this in CI

PkgRadar gates dotenv-pack (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]