Email URLs use http as the protocol

We are using the url variable to compose our email messages. One of our security engineers noticed that the URL is written as http://... instead of https://... and he has some concerns about the potential for man-in-the-middle attacks. We’re using the standard template functionality like so:

<a href="{{ url }}">click here</a>

I’ve searched all over the Community, read through all of the Customize Email Templates documentation, and searched throughout the Dashboard to see if there is a setting to enforce https; I’ve come up empty handed.

Is there a way for us to force all URLs in email templates to be written with https, particularly highly dynamic ones like url in the above snippet?

Bump to hopefully get some responses here.