feat: Add configurable SSL verification for Docker/corporate networks#224
Open
rathnadeep wants to merge 5 commits intogoogle:mainfrom
Open
feat: Add configurable SSL verification for Docker/corporate networks#224rathnadeep wants to merge 5 commits intogoogle:mainfrom
rathnadeep wants to merge 5 commits intogoogle:mainfrom
Conversation
- Added VT_VERIFY_SSL environment variable support - Defaults to SSL verification enabled (secure) - Can be disabled for Docker environments with SSL inspection - Uses environment variable: VT_VERIFY_SSL=false to disable Changes: - Modified _vt_client_factory to accept verify_ssl parameter - Reads VT_VERIFY_SSL environment variable (defaults to true) - Passes verify_ssl to vt.Client constructor This enables the GTI MCP to work in Docker containers within corporate networks that perform SSL inspection while maintaining secure SSL verification by default for local/production use.
|
Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA). View this failed invocation of the CLA check for more information. For the most up to date status, view the checks section at the bottom of the pull request. |
…sport - Add per-request X-VT-ApiKey header support via FastMCP get_http_headers() - Graceful fallback to VT_APIKEY env var when no header is present - Add streamable-http transport for Docker-based multi-client deployments - Add fastmcp>=2.11.1 and uvicorn dependencies - Preserve SSL verification configuration
Add TransportSecuritySettings(enable_dns_rebinding_protection=False) to GTI FastMCP server for Kubernetes/nginx ingress compatibility.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Changes:
This enables the GTI MCP to work in Docker containers within corporate networks that perform SSL inspection while maintaining secure SSL verification by default for local/production use.