Form HTTPS
Checks that form actions use HTTPS
Checks that form actions use HTTPS
| Rule ID | security/form-https |
| Category | Security |
| Scope | Per-page |
| Severity | warning |
| Weight | 6/10 |
Solution
Forms should always submit to HTTPS URLs to protect user data in transit. Update form action attributes from http:// to https://. For relative URLs, ensure the page itself is on HTTPS. Be especially careful with login forms, payment forms, and any forms collecting personal data. Browsers may warn users about insecure form submissions.
Enable / Disable
Disable this rule
squirrel.toml
toml[rules]
disable = ["security/form-https"]Disable all Security rules
squirrel.toml
toml[rules]
disable = ["security/*"]Enable only this rule
squirrel.toml
toml[rules]
enable = ["security/form-https"]
disable = ["*"]