diff --git a/pkg/utils/avatar.go b/pkg/utils/avatar.go index b5c7ad296..75fae20be 100644 --- a/pkg/utils/avatar.go +++ b/pkg/utils/avatar.go @@ -101,7 +101,7 @@ func DownloadImage(url string) ([]byte, error) { return nil, fmt.Errorf("failed to create HTTP request: %w", err) } - resp, err := (&http.Client{}).Do(req) // #nosec G704 -- URL comes from OIDC provider picture claim + resp, err := NewSSRFSafeHTTPClient().Do(req) if err != nil { return nil, fmt.Errorf("failed to download image: %w", err) }