There's an unsafe HTTP link at: https://github.com/codejoust/session.js/blob/2f973508265da3f24c4d77264b265d621438169f/session.js#L362 Should be replaced with `https`. This makes the lib fail when served over secure sites (almost all of them).
There's an unsafe HTTP link at:
session.js/session.js
Line 362 in 2f97350
Should be replaced with
https. This makes the lib fail when served over secure sites (almost all of them).