Ensure use 'HTTPS' in all hooks

hooks that use non-secure 'HTTP' protocol can expose sensitive data. make sure all project hooks are using 'HTTPS'.

Risk Level: medium
Platform: Gitlab
Spectral Rule ID: GL-HRD005

REMEDIATION

To do this:

SaaS:

Go to your project and select Settings > Webhooks.
Go to Project Hooks table
make sure all webhooks URLs are started with "HTTPS://".
Select Save changes.

Read more:

https://docs.gitlab.com/ee/api/projects.html#hooks

Updated about 1 year ago