bypass-envvar-allowlist.patch