From: Luca Boccassi <bluca@debian.org>
Date: Thu, 20 Jul 2023 16:41:38 +0000 (+0100)
Subject: NEWS: note that sd-run --expand-environment will change
X-Git-Tag: v254-rc3~12^2
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=refs%2Fpull%2F28460%2Fhead;p=thirdparty%2Fsystemd.git

NEWS: note that sd-run --expand-environment will change
---

diff --git a/NEWS b/NEWS
index 3da7a15aa64..dbe9ccddaba 100644
--- a/NEWS
+++ b/NEWS
@@ -49,6 +49,10 @@ CHANGES WITH 254 in spe:
           needed in the system service manager. For more details, see:
           https://lists.freedesktop.org/archives/systemd-devel/2022-December/048682.html
 
+        * systemd-run's switch --expand-environment= which currently is disabled
+          by default when combined with --scope, will be changed in a future
+          release to be enabled by default.
+
         Security Relevant Changes:
 
         * pam_systemd will now by default pass the CAP_WAKE_ALARM ambient
@@ -666,7 +670,12 @@ CHANGES WITH 254 in spe:
 
         * systemd-run gained a new switch --expand-environment=no to disable
           server-side environment variable expansion in specified command
-          lines.
+          lines. Expansion defaults to enabled for all execution types except
+          --scope, where it defaults to off (and prints a warning) for backward
+          compatbility reasons. --scope will be flipped to default enabled too
+          in a future release, so if you are using --scope and passing a '$'
+          character in the payload you should start explicitly using
+          --expand-environment=yes/no according to the use case.
 
         * The systemd-system-update-generator has been updated to also look for
           the special flag file /etc/system-update in addition to the existing