Potential data breaches or security lapses on Prisma Studio

[fzn0x]

Bug description

try to run npx prisma studio without database file from npx prisma db push .

It does include details about the internal workings and configuration of a software application, such as file paths and module names. This could potentially expose details about the application's structure or dependencies that might be useful for debugging but could also provide insights to someone with malicious intent if the application is publicly accessible.

In summary, while this message does not contain sensitive personal or confidential information, it does provide some level of detail about a software application that should be protected if the application is security-sensitive. Sharing such information on public forums or with unauthorized persons could potentially aid in targeting specific vulnerabilities within the application's infrastructure.

How to reproduce

1. skip npx prisma db push
2. Try to run npx prisma studio

Expected behavior

The error must occur at build time where the error cannot be accessed via runtime.

Prisma information

N/A

Environment & setup

N/A

Prisma Version

5.12.1