Adds Content-Security-Policy: upgrade-insecure-requests header if on HTTPS Redirects to HTTPS if not on HTTPS and the browser sends HTTP_UPGRADE_INSECURE_REQUESTS header. This is a simple, no-config plugin with focus on short, high quality code.