ICUICU
critical

datadog-mcp-server

v1.0.9

MCP Server for Datadog API

npmgeli2001First seen Feb 22, 2026

84

Total

61

Critical

7

High

16

Medium

Findings

unknown
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    51: if (!DD_APP_KEY) {
    52:     console.error("Error: DD_APP_KEY is required.");
>>> 53:     console.error("Please provide it via command line argument or .env file.");
    54:     console.error(" Command line: --appKey=your_app_key");
    55:     process.exit(1);
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    52: ### Environment Variables
    53: 
>>> 54: Create a `.env` file with your Datadog credentials:
    55: 
    56: ```
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    23: // Parse command line arguments
    24: const argv = (0, minimist_1.default)(process.argv.slice(2));
>>> 25: // Load environment variables from .env file (if it exists)
    26: dotenv_1.default.config();
    27: // Define environment variables - from command line or .env file
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    25: // Load environment variables from .env file (if it exists)
    26: dotenv_1.default.config();
>>> 27: // Define environment variables - from command line or .env file
    28: const DD_API_KEY = argv.apiKey || process.env.DD_API_KEY;
    29: const DD_APP_KEY = argv.appKey || process.env.DD_APP_KEY;
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    26: dotenv_1.default.config();
    27: // Define environment variables - from command line or .env file
>>> 28: const DD_API_KEY = argv.apiKey || process.env.DD_API_KEY;
    29: const DD_APP_KEY = argv.appKey || process.env.DD_APP_KEY;
    30: // Get site configuration - defines the base domain for Datadog APIs
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    27: // Define environment variables - from command line or .env file
    28: const DD_API_KEY = argv.apiKey || process.env.DD_API_KEY;
>>> 29: const DD_APP_KEY = argv.appKey || process.env.DD_APP_KEY;
    30: // Get site configuration - defines the base domain for Datadog APIs
    31: const DD_SITE = argv.site || process.env.DD_SITE || "datadoghq.com";
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    29: const DD_APP_KEY = argv.appKey || process.env.DD_APP_KEY;
    30: // Get site configuration - defines the base domain for Datadog APIs
>>> 31: const DD_SITE = argv.site || process.env.DD_SITE || "datadoghq.com";
    32: // Define service-specific endpoints for different Datadog services
    33: // This follows Datadog's recommended approach for configuring regional endpoints
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    32: // Define service-specific endpoints for different Datadog services
    33: // This follows Datadog's recommended approach for configuring regional endpoints
>>> 34: const DD_LOGS_SITE = argv.logsSite || process.env.DD_LOGS_SITE || DD_SITE;
    35: const DD_METRICS_SITE = argv.metricsSite || process.env.DD_METRICS_SITE || DD_SITE;
    36: // Remove https:// prefix if it exists to prevent double prefix issues
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    33: // This follows Datadog's recommended approach for configuring regional endpoints
    34: const DD_LOGS_SITE = argv.logsSite || process.env.DD_LOGS_SITE || DD_SITE;
>>> 35: const DD_METRICS_SITE = argv.metricsSite || process.env.DD_METRICS_SITE || DD_SITE;
    36: // Remove https:// prefix if it exists to prevent double prefix issues
    37: const cleanupUrl = (url) => url.startsWith("https://") ? url.substring(8) : url;
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    36: // Remove https:// prefix if it exists to prevent double prefix issues
    37: const cleanupUrl = (url) => url.startsWith("https://") ? url.substring(8) : url;
>>> 38: // Store clean values in process.env for backwards compatibility
    39: process.env.DD_API_KEY = DD_API_KEY;
    40: process.env.DD_APP_KEY = DD_APP_KEY;
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    37: const cleanupUrl = (url) => url.startsWith("https://") ? url.substring(8) : url;
    38: // Store clean values in process.env for backwards compatibility
>>> 39: process.env.DD_API_KEY = DD_API_KEY;
    40: process.env.DD_APP_KEY = DD_APP_KEY;
    41: process.env.DD_SITE = cleanupUrl(DD_SITE);
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    38: // Store clean values in process.env for backwards compatibility
    39: process.env.DD_API_KEY = DD_API_KEY;
>>> 40: process.env.DD_APP_KEY = DD_APP_KEY;
    41: process.env.DD_SITE = cleanupUrl(DD_SITE);
    42: process.env.DD_LOGS_SITE = cleanupUrl(DD_LOGS_SITE);
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    39: process.env.DD_API_KEY = DD_API_KEY;
    40: process.env.DD_APP_KEY = DD_APP_KEY;
>>> 41: process.env.DD_SITE = cleanupUrl(DD_SITE);
    42: process.env.DD_LOGS_SITE = cleanupUrl(DD_LOGS_SITE);
    43: process.env.DD_METRICS_SITE = cleanupUrl(DD_METRICS_SITE);
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    40: process.env.DD_APP_KEY = DD_APP_KEY;
    41: process.env.DD_SITE = cleanupUrl(DD_SITE);
>>> 42: process.env.DD_LOGS_SITE = cleanupUrl(DD_LOGS_SITE);
    43: process.env.DD_METRICS_SITE = cleanupUrl(DD_METRICS_SITE);
    44: // Validate required environment variables
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    41: process.env.DD_SITE = cleanupUrl(DD_SITE);
    42: process.env.DD_LOGS_SITE = cleanupUrl(DD_LOGS_SITE);
>>> 43: process.env.DD_METRICS_SITE = cleanupUrl(DD_METRICS_SITE);
    44: // Validate required environment variables
    45: if (!DD_API_KEY) {
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    45: if (!DD_API_KEY) {
    46:     console.error("Error: DD_API_KEY is required.");
>>> 47:     console.error("Please provide it via command line argument or .env file.");
    48:     console.error(" Command line: --apiKey=your_api_key");
    49:     process.exit(1);
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_LOGS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_LOGS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_LOGS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_LOGS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    25:             const { filter, compute, groupBy, options } = params;
    26:             // Directly call with fetch to use the documented aggregation endpoint
>>> 27:             const apiUrl = `https://${process.env.DD_LOGS_SITE || "datadoghq.com"}/api/v2/logs/analytics/aggregate`;
    28:             const headers = {
    29:                 "Content-Type": "application/json",
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    28:             const headers = {
    29:                 "Content-Type": "application/json",
>>> 30:                 "DD-API-KEY": process.env.DD_API_KEY || "",
    31:                 "DD-APPLICATION-KEY": process.env.DD_APP_KEY || ""
    32:             };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    29:                 "Content-Type": "application/json",
    30:                 "DD-API-KEY": process.env.DD_API_KEY || "",
>>> 31:                 "DD-APPLICATION-KEY": process.env.DD_APP_KEY || ""
    32:             };
    33:             const body = {
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_METRICS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_METRICS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_METRICS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_METRICS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_METRICS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_METRICS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_METRICS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_METRICS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_METRICS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    8:         const configOpts = {
    9:             authMethods: {
>>> 10:                 apiKeyAuth: process.env.DD_API_KEY,
    11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    9:             authMethods: {
    10:                 apiKeyAuth: process.env.DD_API_KEY,
>>> 11:                 appKeyAuth: process.env.DD_APP_KEY
    12:             }
    13:         };
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    13:         };
    14:         configuration = datadog_api_client_1.client.createConfiguration(configOpts);
>>> 15:         if (process.env.DD_LOGS_SITE) {
    16:             configuration.setServerVariables({
    17:                 site: process.env.DD_LOGS_SITE
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    15:         if (process.env.DD_LOGS_SITE) {
    16:             configuration.setServerVariables({
>>> 17:                 site: process.env.DD_LOGS_SITE
    18:             });
    19:         }
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    23:     execute: async (params) => {
    24:         try {
>>> 25:             const { apiKey = process.env.DD_API_KEY, appKey = process.env.DD_APP_KEY, filter, sort, page, limit } = params;
    26:             if (!apiKey || !appKey) {
    27:                 throw new Error("API Key and App Key are required");
Report false positive
criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    36:             };
    37:             // Use DD_LOGS_SITE environment variable instead of DD_SITE
>>> 38:             const apiUrl = `https://${process.env.DD_LOGS_SITE || "datadoghq.com"}/api/v2/logs/events/search`;
    39:             const headers = {
    40:                 "Content-Type": "application/json",
Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: ��(���z�ڲ�j�l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: J�b�'���ӭ�즊�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: ��(��ڂ ށ�^.�,

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: ��b�����,��ڗ+br�ڂ ށ�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: ��(���z����1�Zu�Z

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: ������� i�'�*'

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: �������� ��j�^�g)

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumNS-003Network SuspiciousMedium ConfidenceLine 0

JavaScript fetch() call

Detected by automated pattern matching (rule NS-003) with medium confidence. May be a false positive.

    37:                 options: options
    38:             };
>>> 39:             const response = await fetch(apiUrl, {
    40:                 method: "POST",
    41:                 headers: headers,
Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumNS-003Network SuspiciousMedium ConfidenceLine 0

JavaScript fetch() call

Detected by automated pattern matching (rule NS-003) with medium confidence. May be a false positive.

    42:                 "DD-APPLICATION-KEY": appKey
    43:             };
>>> 44:             const response = await fetch(apiUrl, {
    45:                 method: "POST",
    46:                 headers: headers,
Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (5.1 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (5.1 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive
mediumEN-001unknownMedium ConfidenceLine 0

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

Report false positive

Scan History

DateRiskFindings
Feb 25, 2026critical84
Feb 23, 2026critical84
Feb 22, 2026critical84