Hacker News new | comments | show | ask | jobs | submit login

Has anyone tried to use headless chrome to detect insecure content on what you hope is a secure page? I've only looked into it a bit, and so far failed. I'd like to know if a visitor to https://example.com/foo.html in chrome will get a warning about insecure content. I'm looking for a browser because in some cases the insecure content is loaded by javascript from a 3rd party. I don't know a way to do that besides fire it up in a browser and let it go.

Is there a way to get the secure/insecure status from headless chrome?

The remote debugging feature can get to that.

See: https://chromedevtools.github.io/debugger-protocol-viewer/to...

Scroll down to InsecureContentStatus

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact