Accessing endpoints over unencrypted http should be avoided
Impact area
Security
Severity
High
Affected element
Apex Class
Rule ID
SF-0020
Impact
Redirects to http sites can be unsafe.
Remediation
You should always use https for security.
Time to fix
30 min
References
This rule is linked to Common Weakness Enumeration CWE-284 Improper Access Control.