Rule: ApexInsecureEndpoint

Message

Apex callouts should use encrypted communication channels

Description

Checks against accessing endpoints under plain http. You should always use https for security.

Priority

2 (was 3)

Example

public without sharing class Foo {
    void foo() {
        HttpRequest req = new HttpRequest();
        req.setEndpoint('http://localhost:com');
    }
}