nosec directives for intentional use of InsecureSkipVerify

Ne0nd0g · Nov 27, 2023 · 8a421ca · 8a421ca
1 parent ca37ac4
commit 8a421ca
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/clients/utls/utls.go b/clients/utls/utls.go
@@ -132,7 +132,7 @@ func NewTransportFromJA3(ja3 string, InsecureSkipVerify bool, proxy func(*http.R
 	}
 
 	tlsConfig := &t.Config{
-		InsecureSkipVerify: InsecureSkipVerify,
+		InsecureSkipVerify: InsecureSkipVerify, // #nosec G402 - intentionally configurable to allow self-signed certificates
 	}
 
 	transport := Transport{
@@ -154,7 +154,7 @@ func NewTransportFromParrot(parrot string, InsecureSkipVerify bool, proxy func(*
 	}
 
 	tlsConfig := &t.Config{
-		InsecureSkipVerify: InsecureSkipVerify,
+		InsecureSkipVerify: InsecureSkipVerify, // #nosec G402 - intentionally configurable to allow self-signed certificates
 	}
 
 	transport := Transport{