Frankvd

**Name of the Vulnerable Software and Affected Versions** Deno versions prior to 2.1.13 and prior to 2.2.13 **Description** The issue affects Deno, a JavaScript, TypeScript, and WebAssembly runtime. It involves the `Deno.env.toObject` method, which ignores variables listed in the `--deny-env` option of the `deno run` command. This could lead to a false impression that variables listed in the option are impossible to read, making software relying on this combination vulnerable to malicious code trying to steal secrets. **Recommendations** For Deno versions prior to 2.1.13, update to version 2.1.13 or later. For Deno versions prior to 2.2.13, update to version 2.2.13 or later. As a temporary workaround, consider restricting access to sensitive environment variables until the patch is applied.