From f2c7a4ca6bbb66b40af4fe7cab0900e432a0b49f Mon Sep 17 00:00:00 2001
From: RafaelGSS <rafael.nunu@hotmail.com>
Date: Fri, 6 Oct 2023 19:40:54 -0300
Subject: [PATCH] doc: mention files read before env setup

---
 doc/api/permissions.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/doc/api/permissions.md b/doc/api/permissions.md
index 33e24f49dd5a7e..c8775bbe0ff643 100644
--- a/doc/api/permissions.md
+++ b/doc/api/permissions.md
@@ -571,6 +571,10 @@ There are constraints you need to know before using this system:
 * When creating symlinks the target (first argument) should have read and
   write access.
 * Permission changes are not retroactively applied to existing resources.
+* The Permission Model is initialized after the Node.js environment is set up.
+  However, certain flags such as `--env-file` or `--openssl-config` are designed
+  to read files before environment initialization. As a result, such flags are
+  not subject to the rules of the Permission Model.
 
 [Import maps]: https://url.spec.whatwg.org/#relative-url-with-fragment-string
 [Security Policy]: https://github.com/nodejs/node/blob/main/SECURITY.md