diff --git a/TODO b/TODO
index 5fe1a20734..5cb76df282 100644
--- a/TODO
+++ b/TODO
@@ -32,8 +32,6 @@ External:
 
 Features:
 
-* ProtectedHome= turn into enum, and add "full" option that also marks /etc read-only
-
 * generator that automatically discovers btrfs subvolumes, identifies their purpose based on some xattr on them.
 
 * support setting empty environment variables with Environment= and EnvironmentFile=
@@ -70,7 +68,7 @@ Features:
 
 * Add timeout to early-boot, and shut down the system if it is hit. Solves the laptop-in-bag problem and is useful for embedded cases
 
-* Run most system services with cgroupfs read-only and procfs with a more secure mode
+* Run most system services with cgroupfs read-only and procfs with a more secure mode (doesn't work, since the hidepid= option is per-pid-namespace, not per-mount)
 
 * sd-event: generate a failure of a default event loop is executed out-of-thread