We recently conducted an SSL test for our application running on the Heroku common runtime, where Heroku manages the certificates. The test results showed that our certificates are currently rated as B. You can view the full report here: https://www.ssllabs.com/ssltest/analyze.html?d=app.sharinpix.com
Given the importance of security, we believe Heroku should aim to be "secure by default," even on the common runtime. We would greatly appreciate any improvements you can make in this area.
We recently conducted an SSL test for our application running on the Heroku common runtime, where Heroku manages the certificates. The test results showed that our certificates are currently rated as B. You can view the full report here: https://www.ssllabs.com/ssltest/analyze.html?d=app.sharinpix.com
Given the importance of security, we believe Heroku should aim to be "secure by default," even on the common runtime. We would greatly appreciate any improvements you can make in this area.
Thank you.