Headline
GHSA-rwcj-7jjp-4w38: [PUNCIA] [CWE-319] Cleartext Transmission of Sensitive Information via HTTP urls in `API_URLS`
Impact
API_URLS is utilizing HTTP instead of HTTPS for communication that can lead to issues like Eavesdropping, Data Tampering, Unauthorized Data Access & MITM Attacks.
References
[PUNCIA] [CWE-319] Cleartext Transmission of Sensitive Information via HTTP urls in `API_URLS`
Low severity GitHub Reviewed Published Jul 19, 2024 in ARPSyndicate/puncia • Updated Jul 19, 2024