Ignore blank origins in the Security panel.

Source/devtools/front_end/security/SecurityPanel.js

Index: Source/devtools/front_end/security/SecurityPanel.js
diff --git a/Source/devtools/front_end/security/SecurityPanel.js b/Source/devtools/front_end/security/SecurityPanel.js
index da81c396a25dcdd2ada438246bc08a45af1dd923..aa52557394e461084dd719bf43d384b8361b3576 100644
--- a/Source/devtools/front_end/security/SecurityPanel.js
+++ b/Source/devtools/front_end/security/SecurityPanel.js
@@ -124,6 +124,11 @@ WebInspector.SecurityPanel.prototype = {
         var origin = /** @type {string} */ (data.origin);
         var securityState = /** @type {!SecurityAgent.SecurityState} */ (data.securityState);
 
+        if (origin === "") {

[dgozman, 2015/09/03 20:12:18]

if (!origin)

+            // We don't handle resources like data: URIs yet. Most of them don't affect the lock icon, anyhow.
+            return;

[dgozman, 2015/09/03 20:12:18]

You should this on the model level, not on presentation level.

[lgarron, 2015/09/03 20:36:31]

Hmm, that feels like it goes against the advice I got on Tuesday (the model
should be thin).
But I guess it makes sense for the more complicated mechanics of network
requests, and the NetworkManager is currently where we do the imperfect origin
calculation. So I've gone ahead and moved it.

+        }
+
         if (this._origins.has(origin)) {
             var originState = this._origins.get(origin);
             var oldSecurityState = originState.securityState;