From 8ee26010818b7e34fbd2bbcf23dc490ad5632afc Mon Sep 17 00:00:00 2001
From: Adnan Hajdarevic <adnanh@gmail.com>
Date: Sat, 13 Apr 2024 19:55:38 +0200
Subject: [PATCH] Bugfix: Unset aux groups when dropping the privileges

---
 droppriv_unix.go | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/droppriv_unix.go b/droppriv_unix.go
index c292e7d..6f30a44 100644
--- a/droppriv_unix.go
+++ b/droppriv_unix.go
@@ -7,7 +7,12 @@ import (
 )
 
 func dropPrivileges(uid, gid int) error {
-	err := syscall.Setgid(gid)
+	err := syscall.Setgroups([]int{})
+	if err != nil {
+		return err
+	}
+
+	err = syscall.Setgid(gid)
 	if err != nil {
 		return err
 	}