1. What is the status of using HTTP content on HTTPS pages with subresource integrity? I think we could save on traffic if CDNs would serve content over HTTPS and HTTP, and browsers allowed embedding the latter without warnings into HTTPS served pages provided page had subresource integrity information.

2. Wasn't there some work on serving presigned HTTPS requests? The one everyone blamed Google (?) for cause they wanted it to put slices of other websites inside the search results. Might make sense to resurrect that work.