Missing Encryption of Sensitive Data
MindsDB's AI Virtual Database allows developers to connect any AI/ML model to any data source. In versions prior to 220.127.116.11, a call to requests with `verify=False` disables SSL certificate checks. This rule enforces always verifying SSL certificates for methods in the Requests library. In the patched versions, certificates are validated by default, which is the desired behavior.
CWE-311 - Missing Encryption of Sensitive Data
The software does not encrypt sensitive or critical information before storage or transmission.