From 48dcfcb08ff98953b4a623647c384631256f615e Mon Sep 17 00:00:00 2001
From: andres-portainer <91705312+andres-portainer@users.noreply.github.com>
Date: Mon, 1 Sep 2025 16:57:22 -0300
Subject: [PATCH] fix(forbidigo): add more rules to avoid skipping TLS
 verifications BE-11973 (#1123)

---
 .golangci.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.golangci.yaml b/.golangci.yaml
index 2036922a6..b026b11ec 100644
--- a/.golangci.yaml
+++ b/.golangci.yaml
@@ -50,6 +50,8 @@ linters:
           msg: Do not set this field directly, use crypto.CreateTLSConfiguration() instead
         - pattern: ^object\.(Commit|Tag)\.Verify$
           msg: "Not allowed because of FIPS mode"
+        - pattern: ^(types\.SystemContext\.)?(DockerDaemonInsecureSkipTLSVerify|DockerInsecureSkipTLSVerify|OCIInsecureSkipTLSVerify)$
+          msg: "Not allowed because of FIPS mode"
       analyze-types: true
   exclusions:
     generated: lax