I have a terraform module code as below -

module "security_vpc_ap" {
 source = "git::codecommit::us-east-1://test?ref=v1.0.0"
 name = "test-vpc"
 cidr = var.test_cidr
 enable_dns_hostnames = true
 enable_dns_support = true
 # VPC Flow Logs (Cloudwatch log group and IAM role will be created)
 enable_flow_log = true
 create_flow_log_cloudwatch_log_group = true
 create_flow_log_cloudwatch_iam_role = true
 flow_log_max_aggregation_interval = 60
}
.

I am running static code analysis tool checkov which has a dependency of gitpython >=3.1.30

failed to get git::codecommit::us-east-1://test?ref=v1.0.0 because of The codecommit:: protocol looks suspicious, use allow_unsafe_protocols=True to allow it.

Gitpython complains that the codecommit url is not safe. If I manually install gitpython 3.1.29 then the below error doesnt show but it conflicts with checkov dependency