From a801ac49c7ad5b50780bd347d9b9065fcb2c457e Mon Sep 17 00:00:00 2001
From: adrienperonnet <adrien@vendhq.com>
Date: Fri, 26 Apr 2019 23:01:21 +1200
Subject: [PATCH] Add TODO to drop prividges to avoid escalation

---
 provider/provider.go | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/provider/provider.go b/provider/provider.go
index 56d87e7..66f8871 100644
--- a/provider/provider.go
+++ b/provider/provider.go
@@ -216,6 +216,8 @@ func (p ProviderConfig) Authenticate(t *OAuth2Token) error {
 	if !replacedURL {
 		c = append(c, baseURL)
 	}
+
+	//TODO Drop privileges
 	cmd := exec.Command(c[0], c[1:]...)
 	cmd.Run()