Also, unless someone can say for sure that the embedded browser would reject non-HTTPS pages or pages with invalid SSL certs, I think this should be marked as a security bug, so doing that.
Also, unless someone can say for sure that the embedded browser would reject non-HTTPS pages or pages with invalid SSL certs, I think this should be marked as a security bug, so doing that.