include::../description.adoc[]

include::../ask-yourself.adoc[]

include::../recommended.adoc[]

== Sensitive Code Example

----
public class MyClient {
    public void SendRequest(){
        HttpRequest req = new HttpRequest();
        req.setEndpoint('http://example.com');  // Sensitive
        // ...
    }
}
----

== Compliant Solution

[source,apex]
----
public class MyClient {
    public void SendRequest(){
        HttpRequest req = new HttpRequest();
        req.setEndpoint('https://example.com'); // Compliant
        // ...
    }
}
----

include::../exceptions.adoc[]

== See

* https://owasp.org/Top10/A02_2021-Cryptographic_Failures/[OWASP Top 10 2021 Category A2] - Cryptographic Failures
* https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure[OWASP Top 10 2017 Category A3] - Sensitive Data Exposure
* https://cwe.mitre.org/data/definitions/200[MITRE, CWE-200] - Information Exposure
ifdef::env-github,rspecator-view[]

'''
== Implementation Specification
(visible only on this page)

include::message.adoc[]

endif::env-github,rspecator-view[]