stackabletech
diff --git a/‎Cargo.lock‎
Lines changed: 9 additions & 9 deletions b/‎Cargo.lock‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎Cargo.nix‎
Lines changed: 18 additions & 18 deletions b/‎Cargo.nix‎
Lines changed: 18 additions & 18 deletions
diff --git a/‎crate-hashes.json‎
Lines changed: 9 additions & 9 deletions b/‎crate-hashes.json‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎docs/modules/airflow/pages/usage-guide/mounting-dags.adoc‎
Lines changed: 1 addition & 1 deletion b/‎docs/modules/airflow/pages/usage-guide/mounting-dags.adoc‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎extra/crds.yaml‎
Lines changed: 12 additions & 2 deletions b/‎extra/crds.yaml‎
Lines changed: 12 additions & 2 deletions
@@ -73,7 +73,7 @@ include::example$example-airflow-gitsync-https.yaml[]
     The associated secret must have a key named `ca.crt` whose value is the PEM-encoded certificate bundle.
     If this field is set to `webPki: {}` or is omitted altogether, then no changes will be made to the gitsync command and it will default to presenting no certificate to the backend.
     Omitting this field is non-breaking behaviour and as such it does *not* set `http.sslverify` to `false` as disabling security checks should be a last resort and not something activated by default.
-    This can still be achieved by passing `--git-config: http.sslverify=false` explicitly.
+    This can still be achieved explicitly: either by setting `tls: null` or by passing `--git-config: http.sslverify=false`.
 
 .git-sync usage example: ssh
 [source,yaml]
 
@@ -1214,7 +1214,12 @@ spec:
                           format: uri
                           type: string
                         tls:
-                          description: Use a TLS connection. If not specified no TLS will be used.
+                          default:
+                            verification:
+                              server:
+                                caCert:
+                                  webPki: {}
+                          description: Configure a TLS connection. If not specified it will default to webPki validation.
                           nullable: true
                           properties:
                             verification:
@@ -7114,7 +7119,12 @@ spec:
                           format: uri
                           type: string
                         tls:
-                          description: Use a TLS connection. If not specified no TLS will be used.
+                          default:
+                            verification:
+                              server:
+                                caCert:
+                                  webPki: {}
+                          description: Configure a TLS connection. If not specified it will default to webPki validation.
                           nullable: true
                           properties:
                             verification: