Add insecure TLS option

[robinp-tw]

Plumb flag --insecure / -k (after curl's convention) that ignores TLS validation. Mostly useful against exotic or test certs.

(Maybe the cacert option already available could work if there's a proper root CA, but in case of the test server I was testing, that was not the case at least)

Might be related to #492.

[ktr0731]

Closing due to no response. Please feel free to reopen if you have some problems.

[8de2fdb0]

please reopen and add