'Why does the namespace of SOAP Envelope have to use http not https?

I have a question about the soap message to Web Services. My company used a static analysis tool, then the report have a CVE about using http in the soap message. How does explain the envelope of soap message must to use http not https?

<soap:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
  <soap:Body>
   ...
  </soap:Body>
</soap:Envelope>
xmlsoapxsd


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions