pkg/tls: remove InsecureSkipVerify=true flag (#4265)

CWE-295 code scanning alert flag this. Seems OK to just remove it. Signed-off-by: Miek Gieben <miek@miek.nl>

pkg/tls: remove InsecureSkipVerify=true flag (#4265)
CWE-295 code scanning alert flag this. Seems OK to just remove it. Signed-off-by: Miek Gieben <miek@miek.nl>
04936958 · Miek Gieben · GitHub · 723e9b06 · 04936958
Commit 04936958 authored Nov 05, 2020 by Miek Gieben Committed by GitHub Nov 05, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 0 additions and 5 deletions

plugin/pkg/tls/tls.go plugin/pkg/tls/tls.go +0 -5

No files found.
--- a/plugin/pkg/tls/tls.go
+++ b/plugin/pkg/tls/tls.go
@@ -108,11 +108,6 @@ func loadRoots(caPath string) (*x509.CertPool, error) {
 // NewHTTPSTransport returns an HTTP transport configured using tls.Config
 func NewHTTPSTransport(cc *tls.Config) *http.Transport {
-	// this seems like a bad idea but was here in the previous version
-	if cc != nil {
-		cc.InsecureSkipVerify = true
-	}
 	tr := &http.Transport{
 		Proxy: http.ProxyFromEnvironment,
 		Dial: (&net.Dialer{