http://ghc.gitlab.haskell.org/head.hackage/ should upgrade to TLS
Given that http://ghc.gitlab.haskell.org/head.hackage/ contains a snippet that users may copy into the cabal.project
file we should really force-upgrade the page to TLS to get some semblance of man-in-the-middle mitigation.