bugs.otr.im uses http:// in footers of e-mails (maybe elsewhere), should use https://
i just got a password reset link sent to me via e-mail for this gitlab instance. the link started with http://. it should start with https:// to avoid leaking the high-entropy password reset code.
if there is another project that i should use for reporting bugs against this gitlab installation, please let me know.