Mixed content: insecure resources loading on a secure page

Mixed content is when a secure HTTPS page loads some resources — such as images, scripts, or stylesheets — over the older, unencrypted HTTP connection. Browsers may block those insecure resources or display a "not secure" warning to visitors, which can break page elements and erode trust in your business. Update the URLs of any HTTP resources to HTTPS, and add upgrade-insecure-requests to your Content Security Policy as a safety net to catch any that are missed.