Insecure websocket communication detected.

Description

Applications should only connect to APIs using SSL connections. This rule checks that all websocket connections use SSL.

Remediations

❌ Avoid using unsecured outgoing websocket communication:

client = Faye::WebSocket::Client.new('ws://insecure-api.com')

✅ Always connect using SSL:

client = Faye::WebSocket::Client.new('wss://secure-api.com')

Resources

Associated CWE

OWASP Top 10

Ready to take the next step? Join the Bearer Cloud waitlist.