/usr/local/sbin and /usr/local/bin has been added into secure_path variable in default sudoers on RAWHIDE sudo.

It was requested in https://bugzilla.redhat.com/show_bug.cgi?id=1166185.

If you don't want it you still can revert it. You can add there file under /etc/sudoers.d e.g. /etc/sudoers.d/secure_path_revert.

With this approach you can still use default sudoers and have it updated after each update of sudo and also have your own configuration under /etc/sudoers.d directory.

$ cat /etc/sudoers.d/secure_path_revert

#replace secure_path with old default

Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin

--
---------------------------------------------------------

Radovan Sroka
Associate Software Engineer | Security Technologies | Red hat, Inc.