Google-cloud-go: pubsub: puller requires more permissions than it should for acker

So I decide to create a service account with absolutely no IAM roles defined, and then I added the Pub/Sub Subscriber permission to some subscription, which fails to authorize with google-cloud-go when I call subscription.Pull. If I add the Pub/Sub Viewer permission then, all of a sudden, it starts working.
This left me wondering because google-cloud-java works with just the Subscriber permission.

At close inspection, I noticed Pull is trying to get the subscription configuration (so requiring the Viewer permission would make sense).

https://github.com/GoogleCloudPlatform/google-cloud-go/blob/3c4c8cc11d151d76587802cb55dd7b80beca832b/pubsub/subscription.go#L141

But then, I wondered how were the java guys doing it, which seems to be like this.

https://github.com/GoogleCloudPlatform/google-cloud-java/blob/0a5a27f067ee4b649148ea90974b6536a7f5b671/google-cloud-pubsub/src/main/java/com/google/cloud/pubsub/AckDeadlineRenewer.java#L191

So apparently they are not requesting the subscription's config for getting the ack deadline option, but rather fetching messages and acking with a delay that depends on the current message's expected ack deadline (which looks smarter, albeit more complex).

I am writing this issue to first ask you if you were aware of this and/or if this is a design decision. Secondly, if you were OK with accepting a PR that would remove the retrieval of the subcription's config and use the next message's expected ack deadline, similar to what the java client does?