I ran into this change of behavior in doas(1). Not sure if it's
intentional or a bug:
> Index: usr.bin/doas/doas.c
[...]
> + if (unveilcommands(safepath, cmd) == 0)
Previously, a doas.conf such as
permit tb as root
would allow me to run an arbitrary command in my $PATH as root by doing
'doas foo'. With this diff, 'foo' needs to be a command in safepath or
contain a '/'.
I suspect preserving the current behavior would need to pass the PATH
environment variable into unveilcommands(), which is probably not going
to fly.
