Google has started sending notifications to all the users that make use of input text fields or basically anywhere where the user is inputting the data. This is happening if your site does not have HTTPS. Not everyone can afford HTTPS especially if it is just a blog where you post news. You will get a warning "Chrome will show security warnings on" even if you have put a search widget which has code similar to following:
< input type="text" > or < input type="email" >
So you have two choices – first is more expensive and requires you to get HTTPS certificate from your domain registrar. Alternatively, if you do not want to spend a dime, you should simply not use it. One way by achieving this is by removing all forms, search widgets from your site. Then open the source of your website and see if <input type=”text” is present or not.
Starting October 2017, Chrome (version 62) will show a “NOT SECURE” warning when users enter text in a form on an HTTP page, and for all HTTP pages in Incognito mode.
The following URLs on your site include text input fields (such as < input type="text" > or < input type="email" >) that will trigger the new Chrome warning. Review these examples to see where these warnings will appear, so that you can take action to help protect users’ data. This list is not exhaustive.
Google says migrate to HTTPS
To prevent the “Not Secure” notification from appearing when Chrome users visit your site, only collect user input data on pages served using HTTPS.
However, if you just have a blog and you can live without a search widget, why spend anything?