Skip to content

feat: make SOAR SSL verification configurable #225

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
dandye wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

feat: make SOAR SSL verification configurable #225

dandye wants to merge 1 commit into from
+22 −10

Conversation

@dandye
Copy link
Collaborator

@dandye dandye commented Jan 26, 2026
edited
Loading

Summary

This PR adds the ability to configure SSL/TLS verification for the SecOps SOAR MCP server. This is useful as a last resort for environments with self-signed certificates or proxy-level TLS interception.

Changes

  • http_client.py: Updated HttpClient to use aiohttp's ssl parameter instead of verify. Restored ssl_verify parameter in request methods.
  • bindings.py: Added logic to read SOAR_SSL_VERIFY from environment variables (defaults to true). Handles string-to-bool conversion.
  • consts.py: Added ENV_SOAR_SSL_VERIFY constant.
  • pyproject.toml: Added certifi dependency.

Usage

Set the environment variable SOAR_SSL_VERIFY=false to disable certificate verification (only for the SOAR API URL).

@dandye dandye requested a review from a team January 26, 2026 12:33
@dandye dandye marked this pull request as draft January 26, 2026 12:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dandye