GitGuardian
diff --git a/‎CHANGELOG.md‎
Lines changed: 27 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 27 additions & 0 deletions
diff --git a/‎actions/secret/action.yml‎
Lines changed: 1 addition & 1 deletion b/‎actions/secret/action.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎changelog.d/20251014_145559_salome.voltz.md‎
Lines changed: 0 additions & 42 deletions b/‎changelog.d/20251014_145559_salome.voltz.md‎
Lines changed: 0 additions & 42 deletions
diff --git a/‎changelog.d/20251014_155609_salome.voltz_remove_test_on_clearlinux.md‎
Lines changed: 0 additions & 41 deletions b/‎changelog.d/20251014_155609_salome.voltz_remove_test_on_clearlinux.md‎
Lines changed: 0 additions & 41 deletions
diff --git a/‎changelog.d/20251016_101312_ghislain.casier_add_insecure_option.md‎
Lines changed: 0 additions & 44 deletions b/‎changelog.d/20251016_101312_ghislain.casier_add_insecure_option.md‎
Lines changed: 0 additions & 44 deletions
diff --git a/‎changelog.d/20251020_174722_salome.voltz_scrt_5971_ggshield_runs_into_oserror_errno_22_invalid_argument_when.md‎
Lines changed: 0 additions & 42 deletions b/‎changelog.d/20251020_174722_salome.voltz_scrt_5971_ggshield_runs_into_oserror_errno_22_invalid_argument_when.md‎
Lines changed: 0 additions & 42 deletions
diff --git a/‎ggshield/__init__.py‎
Lines changed: 1 addition & 1 deletion b/‎ggshield/__init__.py‎
Lines changed: 1 addition & 1 deletion
@@ -1,5 +1,32 @@
 # Changelog
 
+<a id='changelog-1.44.0'></a>
+
+## 1.44.0 — 2025-10-27
+
+### Added
+
+- Added `--insecure` CLI option and `insecure` configuration setting as clearer alternatives to `--allow-self-signed` and `allow_self_signed`. The new option explicitly communicates that SSL verification is completely disabled, making the connection vulnerable to man-in-the-middle attacks.
+- Added prominent warning messages when SSL verification is disabled (via either `--insecure` or `--allow-self-signed`), explaining the security risks and recommending the secure alternative of using the system certificate trust store (available with Python >= 3.10).
+
+### Changed
+
+- Removed Clear Linux from the OS package testing workflow as the project has been discontinued.
+
+### Deprecated
+
+- The `--allow-self-signed` CLI option and `allow_self_signed` configuration setting are now deprecated in favor of `--insecure` and `insecure`. Deprecation warnings are displayed when these options are used, guiding users to the clearer alternative. Both options remain functional for backward compatibility and will be maintained for an extended deprecation period before removal.
+
+### Fixed
+
+- Fixed crash when API returns scopes not yet recognized by py-gitguardian.
+
+- Skip non-seekable files instead of crashing.
+
+### Security
+
+- Improved clarity around SSL verification settings. The `--allow-self-signed` option name was misleading as it suggests certificate validation is still performed, when in reality all SSL verification is disabled. The new `--insecure` option makes this behavior explicit. Both options remain functional for backward compatibility.
+
 <a id='changelog-1.43.0'></a>
 
 ## 1.43.0 — 2025-08-27
 
@@ -16,7 +16,7 @@ inputs:
 
 runs:
   using: 'docker'
-  image: 'docker://gitguardian/ggshield:v1.43.0'
+  image: 'docker://gitguardian/ggshield:v1.44.0'
   entrypoint: '/app/docker/actions-secret-entrypoint.sh'
   args:
     - ${{ inputs.args }}
@@ -1 +1 @@
-__version__ = "1.43.0"
+__version__ = "1.44.0"
Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-__version__ = "1.43.0"`
	`1`	`+__version__ = "1.44.0"`