@mirabilos @harrysintonen this is a pretty widespread behaviour in existing tooling: systemctl and bin/su suffer it as well. It wasn’t thought worthy of a CVE for those. I’m actually surprised OG sudo doesn’t