The file seems to be components/search_engines/prepopulated_engines.json

adding owners for their view.

Our inclusion rules are very carefully based on usage metrics so that we give users choices that are most widely-used in their areas.  Nearly all the search engine choices around the world do not use HTTPS, so we clearly cannot remove all of them.  Removing any of them would be inconsistent, so we shouldn't do that either.

This is WontFix.  If you'd like to have a more in-depth discussion about our rules here, it should probably be done off the record, and you should include me and Tyler Odean.  If you'd like to reduce the number of insecure engines in Chrome, I think the best way would be to reach out to the engines in question and argue for why they and their users will benefit from a secure option.

I agree that non-secure search engines have no place in Chrome. I also agree that we can't remove them just yet. :) +felt,estark,emilyschechter for consideration as part of the project to increase TLS usage — perhaps we can prioritize talking to the search engine operators.

 Issue 624794  has been merged into this issue.

pkasting, felt, et al.: Upon cursory inspection, at least some of the changes in the patch in  Issue 624794  do not break searching. So I think we should consider accepting (some form of) that patch.

I can't see that bug.  If you need to reopen this one, you need to be very clear on this bug what you're talking about doing.

But please don't reopen for anything that involves changing any of our prepopulated engines without prior agreement from the folks that own this on an internal thread.

I also can't see that bug FWIW

the bug is open now, it contains a patch to upgrade some http to https for search engines.

Unduping that bug since it's not the same as this, and unlike this bug is not WontFix.

Just want to celebrate the fact that ask and aol are now both officially HTTPS by default. Wooohooo!