diff --git a/generic/curl-unencrypted-url.sh b/generic/curl-unencrypted-url.sh
index 39b5006..e329a00 100644
--- a/generic/curl-unencrypted-url.sh
+++ b/generic/curl-unencrypted-url.sh
@@ -13,4 +13,10 @@ curl https://google.com > /dev/null
 curl http://localhost > /dev/null
 
 # ok: curl-unencrypted-url
-curl http://127.0.0.1 > /dev/null
\ No newline at end of file
+curl http://127.0.0.1 > /dev/null
+
+# ok: curl-unencrypted-url
+curl http://169.254.169.254 > /dev/null
+
+# ok: curl-unencrypted-url
+curl http://metadata.google.internal > /dev/null
diff --git a/generic/curl-unencrypted-url.yaml b/generic/curl-unencrypted-url.yaml
index ea29409..4007a3e 100644
--- a/generic/curl-unencrypted-url.yaml
+++ b/generic/curl-unencrypted-url.yaml
@@ -19,3 +19,5 @@ rules:
           - pattern: curl ... ftp://
       - pattern-not-inside: curl ... http://127.0.0.1
       - pattern-not-inside: curl ... http://localhost
+      - pattern-not-inside: curl ... http://169.254.169.254
+      - pattern-not-inside: curl ... http://metadata.google.internal