• Xavienth
    link
    fedilink
    arrow-up
    3
    ·
    22 hours ago

    I guess https isn’t strictly necessary if you’re not handling user input.

    There’s still an argument to be made that https prevents malicious code from being injected in transit.