Dear Avast,
We are a company for professionals, that provide an online backoffice for our clients. We recieve some complains that our app is not working correctly. And we after some support with them noticed that
the issue is they use Avast. And Avast will mark some external javascript files as insecure, despite they using https. Because that script wont load, our app wont load, since that script is essencial for the rest of the application.
So we had to warn all our users to remove avast. Or disable avast while using our website. After that it works correctly.
The offending script is coming from cloud flare. in this case this one: https://cdnjs.cloudflare.com/ajax/libs/headjs/0.99/head.min.js
Which looks perfectly normal! So i believe this is a problem for avast. At least our client wont use avast thats for sure, since thats the first thing we recommend. You have to solve that issue.
This is just a notice.
Thanks.