From 952f22c0ed68bed91027cf997247c89f34ef831a Mon Sep 17 00:00:00 2001
From: Rob Walker <rob@interthreadsoftware.com>
Date: Fri, 11 Nov 2016 15:18:25 -0500
Subject: [PATCH] Disabled CURL SSLv3

SSLv3 is not secure and rejected by some Tool Consumers. The PHP CURL
manual recommends not setting this option.
---
 src/HTTPMessage.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/HTTPMessage.php b/src/HTTPMessage.php
index 3c043bb..1fa2a9a 100644
--- a/src/HTTPMessage.php
+++ b/src/HTTPMessage.php
@@ -132,7 +132,7 @@ class HTTPMessage
             curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
             curl_setopt($ch, CURLINFO_HEADER_OUT, true);
             curl_setopt($ch, CURLOPT_HEADER, true);
-            curl_setopt($ch, CURLOPT_SSLVERSION,3);
+            //curl_setopt($ch, CURLOPT_SSLVERSION,3);
             $chResp = curl_exec($ch);
             $this->ok = $chResp !== false;
             if ($this->ok) {