This repository has been archived by the owner on Feb 22, 2020. It is now read-only.
Insecure resource download over HTTP #3
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
This package downloads executables using HTTP, which is vulnerable to the man-in-the-middle attack. It would be safer if the package were downloaded from a public server that enables HTTPS.
The text was updated successfully, but these errors were encountered: