fix #8530

Auditors: @diracdeltas

Test Plan:
1. Go to https://mixed-script.badssl.com/
2. We should be able to view certificate
3. Click load unsafe scripts
4. We should still have option to view certificate

1. Go to https://wrong.host.badssl.com/
2. Click proceed to site
3. We should still have option to view certificate
4. Go to http://example.com/
5. We shouldn't be able to view certificate