elastic-apm is vulnerable to man-in-the-middle (MitM) attacks. When specifying a trusted server CA certificate via the server_ca_cert
setting, a TLS certificate validation error causes improper verification of the certificate returned by the APM server. This allows an attacker to perform man-in-the-middle attacks against the Ruby agent.