OptionalcdbOptionalcdbOptionalconfirmOptionalformatOptionalhostOptionalinsecureOptionalmaxOptionalpasswordOptionalportOptionalresolveOpt-in host ARP resolution for a MAC target (none default, or arp).
OptionalsshSSH private-key path for --via ssh (path only; agent / ~/.ssh used if unset).
OptionalstdinOptionaltargetOptionaltimeoutOptionalusernameOptionalvalidateOptionalverboseOptionalviaOptionalyes
Disable peer verification (
--insecure). For--via sshthis setsStrictHostKeyChecking=nowith a nullknown_hosts, so a changed / impersonated host key is accepted too — not just trust-on-first-use; for api-ssl it accepts a self-signed TLS cert. Default verifies.