diff --git a/app/Services/SanitizeService.php b/app/Services/SanitizeService.php
index dec616ad..137650c0 100644
--- a/app/Services/SanitizeService.php
+++ b/app/Services/SanitizeService.php
@@ -219,11 +219,16 @@ public function isLocalObject($url): bool
             return false;
         }
 
+        $parsed = parse_url($url);
+        if (! $parsed || ! isset($parsed['scheme']) || $parsed['scheme'] !== 'https') {
+            return false;
+        }
+
         $app = parse_url(config('app.url'));
         $appHost = strtolower(data_get($app, 'host'));
-        $urlHost = parse_url($url, PHP_URL_HOST);
+        $urlHost = strtolower(data_get($parsed, 'host'));
 
-        return $appHost === strtolower($urlHost);
+        return $appHost === $urlHost;
     }
 
     /**