I often come into a problem with certain themes, as I am required to use https and keep websites encrypted, as well as prevent third party calls for privacy. I get browser warnings, some uglier than others depending on the browser, quite often testing various themes from many places because of calls to google, wordpress codex, gravitar, etc. We usually weed these out pretty good and have disable plugins but some themes over-ride these to still call google fonts or apis.
I know you have helped me in the past with the code needed to get around these and quit these type of external calls on page loads.
Can you please consider allowing a "secure" option on themes to quickly get rid of all outside calls to anyone including wordpress codex or google, or a search filter maybe? These also risk slowing down page load times, as there have been rare times that slow calls to google fonts or apis slow down the website, though google usually has pretty good performance.
I totally understand if we are using a feature like google maps it needs to connect to them, but by default we don't want sites linking to google fonts, google apis, google maps, gstatic, etc. unless we use enable a specific feature or service requiring it. It would make workflow and theme testing quicker to filter by themes that do not include any external calls or maybe even a gui option to quickly just disable all such calls.