Doesn't "Unsecured App" sound too hard?

[step307]

Current definition of the https://sfdx-hardis.cloudity.com/hardis/org/diagnose/unsecure-connected-apps/ :

Unsecured App Detection: Identifies Connected Apps that allow users to authorize themselves without admin approval, which can pose security risks.

In our case the results of the check are also posted to some Teams-channel, so it is visible to many people, which are not much aware of hardis but responcible for quality/security/etc control.

The question is: "Unsecured App" sounds like the app is completely unsecure or security is completely missing and it might access salesforce without any authentication or something like that. In reality it is only a "self secured" App, which can be installed by any user of the Org but still under user controll and inheritig user's proveleges.

What do you think about rewording to "Unrestricted App", "Overpermissive App", "Overexposed App", etc ?

[nvuillam]

@step307 According to new policies, any Connected Apps with active OAuth Tokens:

• should be installed
• should have restrictive policies

Before that, it means that... they are "Unrestricted", "Overpermissive" or "Overexposed"... all that words meaning "Unsecured" :)

The goals is to make them scary to force admins to configure them 😇

And the good thing is that sfdx-hardis can help for that, like explained in this article -> https://cloudity.com/actualites/salesforce-connected-apps-security/