keycloak-httpd-client-install is vulnerable to information disclosure. Users are able to submit passwords through command line, which would cause the passwords to be stored in command histories and process info.
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHSA-2019:2137
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=1673716
github.com/jdennis/keycloak-httpd-client-install/commit/c3121b271abaaa1a76de2b9ae89dacde0105cd75