Privacybadger's release edition already is.
Also a significant number of sites broke for me, and disabling the rule for that site would fix the issue. I think it's showing its age, and besides it's becoming less useful in an increasingly https centric Web. Am hoping the rewrite/refactoring necessary for migration to WebExtensions can help improve its performance too.
This, along with a lot more companies being hacked, blackmailed, extorted, etc - costing them real money - seems to have solved the problem for 99% of sites.
Unless it's a personal blog or something, I won't even use a site not using encryption.
Is HttpsEverywhere even needed anymore, or just used out of habit?