After running apt update I noticed that update info is being downloaded using HTTP.
After running upgrade, I see that upgrades are being downloaded from HTTP too.
My understanding is that HTTP is essentially insecure, i. e. open to intercept and replacement of data. Are the upgrades thus unsafe? Or do I misunderstand something?
