Added check to insecure websocket

[pkalyankumar1010]

Insecure WebSocket Detected , Use Secure WebSocket
Your code is using an insecure WebSocket (ws://), which transmits data unencrypted, making it vulnerable to man-in-the-middle (MITM) attacks and eavesdropping.

Problem :

• const socket = new WebSocket({port : 8080});
• Data is sent in plain text over the network.
• Attackers can intercept, modify, or inject messages.
• Modern browsers may block ws:// connections on HTTPS websites due to security risks.

Solution: Use wss://

• To secure the WebSocket connection, switch to wss://, which encrypts the communication using TLS/SSL, just like HTTPS:
• import { createServer } from "https";
• const server = createServer({ cert: ..., key: ... });
• const wss4 = new WebSocketServer({ server });
• Ensures end-to-end encryption.
• Protects against MITM attacks.
• Works seamlessly with HTTPS websites.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment

Name	Status	Preview	Comments	Updated (UTC)
globstar	⬜️ Ignored (Inspect)	Visit Preview		Feb 27, 2025 0:28am

[sourya-deepsource]

This checker looks similar to the one in #141. Can we merge both of them?