There is one simple thing about all of this, HTTPS is moving forward as majority of traffic is already over TLS. So you can get on board or get left behind as a relic of the past.
I’m astounded to see people still arguing “my site doesn’t need HTTPS” so I’ll put it simply: either spend a few mins putting it on your site now or continually explaining to your visitors why your site is not “not secure” until you end up doing it anyway. It’s not a negotiation.