diff --git a/build.sbt b/build.sbt
index b8f4787db..f6fd5c8e6 100644
--- a/build.sbt
+++ b/build.sbt
@@ -246,7 +246,12 @@ lazy val lmCore = (project in file("core"))
       ),
       exclude[ReversedMissingMethodProblem](
         "sbt.librarymanagement.MavenRepository.allowInsecureProtocol"
-      )
+      ),
+      exclude[IncompatibleResultTypeProblem]("sbt.librarymanagement.ResolverFunctions.validateURLRepository"),
+      exclude[IncompatibleResultTypeProblem]("sbt.librarymanagement.ResolverFunctions.validateMavenRepo"),
+      exclude[IncompatibleResultTypeProblem]("sbt.librarymanagement.ResolverFunctions.validateArtifact"),
+      exclude[IncompatibleResultTypeProblem]("sbt.librarymanagement.*.validateProtocol"),
+
     ),
   )
   .configure(addSbtIO, addSbtUtilLogging, addSbtUtilPosition, addSbtUtilCache)
diff --git a/core/src/main/contraband-scala/sbt/librarymanagement/Artifact.scala b/core/src/main/contraband-scala/sbt/librarymanagement/Artifact.scala
index ad2dafa0c..86d7a218c 100644
--- a/core/src/main/contraband-scala/sbt/librarymanagement/Artifact.scala
+++ b/core/src/main/contraband-scala/sbt/librarymanagement/Artifact.scala
@@ -14,7 +14,7 @@ final class Artifact private (
   val extraAttributes: Map[String, String],
   val checksum: Option[sbt.librarymanagement.Checksum],
   val allowInsecureProtocol: Boolean) extends sbt.librarymanagement.ArtifactExtra with Serializable {
-  private[sbt] def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateArtifact(this, logger)
+  private[sbt] def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateArtifact(this, logger)
   private def this(name: String) = this(name, Artifact.DefaultType, Artifact.DefaultExtension, None, Vector.empty, None, Map.empty, None, false)
   private def this(name: String, `type`: String, extension: String, classifier: Option[String], configurations: Vector[sbt.librarymanagement.ConfigRef], url: Option[java.net.URL], extraAttributes: Map[String, String], checksum: Option[sbt.librarymanagement.Checksum]) = this(name, `type`, extension, classifier, configurations, url, extraAttributes, checksum, false)
   
diff --git a/core/src/main/contraband-scala/sbt/librarymanagement/ChainedResolver.scala b/core/src/main/contraband-scala/sbt/librarymanagement/ChainedResolver.scala
index ebfa1fa6a..3fe0ce544 100644
--- a/core/src/main/contraband-scala/sbt/librarymanagement/ChainedResolver.scala
+++ b/core/src/main/contraband-scala/sbt/librarymanagement/ChainedResolver.scala
@@ -7,7 +7,7 @@ package sbt.librarymanagement
 final class ChainedResolver private (
   name: String,
   val resolvers: Vector[sbt.librarymanagement.Resolver]) extends sbt.librarymanagement.Resolver(name) with Serializable {
-  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = resolvers.foreach(_.validateProtocol(logger))
+  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = !resolvers.forall(!_.validateProtocol(logger))
   
   
   override def equals(o: Any): Boolean = o match {
diff --git a/core/src/main/contraband-scala/sbt/librarymanagement/MavenRepo.scala b/core/src/main/contraband-scala/sbt/librarymanagement/MavenRepo.scala
index b93d5b204..32ce0d0ab 100644
--- a/core/src/main/contraband-scala/sbt/librarymanagement/MavenRepo.scala
+++ b/core/src/main/contraband-scala/sbt/librarymanagement/MavenRepo.scala
@@ -12,7 +12,7 @@ final class MavenRepo private (
   val _allowInsecureProtocol: Boolean) extends sbt.librarymanagement.MavenRepository(name, root, localIfFile) with Serializable {
   override def isCache: Boolean = false
   override def allowInsecureProtocol: Boolean = _allowInsecureProtocol
-  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateMavenRepo(this, logger)
+  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateMavenRepo(this, logger)
   private def this(name: String, root: String) = this(name, root, true, false)
   private def this(name: String, root: String, localIfFile: Boolean) = this(name, root, localIfFile, false)
   
diff --git a/core/src/main/contraband-scala/sbt/librarymanagement/Resolver.scala b/core/src/main/contraband-scala/sbt/librarymanagement/Resolver.scala
index 599fb562b..f4a7c9627 100644
--- a/core/src/main/contraband-scala/sbt/librarymanagement/Resolver.scala
+++ b/core/src/main/contraband-scala/sbt/librarymanagement/Resolver.scala
@@ -7,7 +7,7 @@ package sbt.librarymanagement
 abstract class Resolver(
   val name: String) extends Serializable {
   /** check for HTTP */
-  private[sbt] def validateProtocol(logger: sbt.util.Logger): Unit = ()
+  private[sbt] def validateProtocol(logger: sbt.util.Logger): Boolean = false
   
   
   
diff --git a/core/src/main/contraband-scala/sbt/librarymanagement/URLRepository.scala b/core/src/main/contraband-scala/sbt/librarymanagement/URLRepository.scala
index 11a19137f..9acb17c40 100644
--- a/core/src/main/contraband-scala/sbt/librarymanagement/URLRepository.scala
+++ b/core/src/main/contraband-scala/sbt/librarymanagement/URLRepository.scala
@@ -8,7 +8,7 @@ final class URLRepository private (
   name: String,
   patterns: sbt.librarymanagement.Patterns,
   val allowInsecureProtocol: Boolean) extends sbt.librarymanagement.PatternsBasedRepository(name, patterns) with Serializable {
-  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateURLRepository(this, logger)
+  private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateURLRepository(this, logger)
   private def this(name: String, patterns: sbt.librarymanagement.Patterns) = this(name, patterns, false)
   
   override def equals(o: Any): Boolean = o match {
diff --git a/core/src/main/contraband/librarymanagement.json b/core/src/main/contraband/librarymanagement.json
index 67d655470..0b9d307fa 100644
--- a/core/src/main/contraband/librarymanagement.json
+++ b/core/src/main/contraband/librarymanagement.json
@@ -147,7 +147,7 @@
         { "name": "allowInsecureProtocol", "type": "Boolean",                        "default": "false",                     "since": "1.3.0" }
       ],
       "extra": [
-        "private[sbt] def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateArtifact(this, logger)"
+        "private[sbt] def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateArtifact(this, logger)"
       ],
       "parentsCompanion": "sbt.librarymanagement.ArtifactFunctions"
     },
@@ -563,7 +563,7 @@
       ],
       "extra": [
         "/** check for HTTP */",
-        "private[sbt] def validateProtocol(logger: sbt.util.Logger): Unit = ()"
+        "private[sbt] def validateProtocol(logger: sbt.util.Logger): Boolean = false"
       ],
       "types": [
         {
@@ -575,7 +575,7 @@
             { "name": "resolvers", "type": "sbt.librarymanagement.Resolver*" }
           ],
           "extra": [
-            "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = resolvers.foreach(_.validateProtocol(logger))"
+            "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = !resolvers.forall(!_.validateProtocol(logger))"
           ]
         },
         {
@@ -603,7 +603,7 @@
               "extra": [
                 "override def isCache: Boolean = false",
                 "override def allowInsecureProtocol: Boolean = _allowInsecureProtocol",
-                "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateMavenRepo(this, logger)"
+                "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateMavenRepo(this, logger)"
               ],
               "toString": "s\"$name: $root\""
             },
@@ -676,7 +676,7 @@
                 { "name": "allowInsecureProtocol", "type": "boolean", "default": "false", "since": "1.3.0" }
               ],
               "extra": [
-                "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Unit = Resolver.validateURLRepository(this, logger)"
+                "private[sbt] override def validateProtocol(logger: sbt.util.Logger): Boolean = Resolver.validateURLRepository(this, logger)"
               ]
             },
             {
diff --git a/core/src/main/scala/sbt/librarymanagement/ResolverExtra.scala b/core/src/main/scala/sbt/librarymanagement/ResolverExtra.scala
index 33944a268..8f79c933d 100644
--- a/core/src/main/scala/sbt/librarymanagement/ResolverExtra.scala
+++ b/core/src/main/scala/sbt/librarymanagement/ResolverExtra.scala
@@ -404,8 +404,9 @@ private[librarymanagement] abstract class ResolverFunctions {
     Patterns().withIvyPatterns(pList).withArtifactPatterns(pList).withIsMavenCompatible(false)
   }
 
+  // to display all error messages at once, just log here don't throw
   private[sbt] def warnHttp(value: String, suggestion: String, logger: Logger): Unit = {
-    logger.warn(s"insecure HTTP request is deprecated '$value'; switch to HTTPS$suggestion")
+    logger.error(s"insecure HTTP request is unsupported '$value'; switch to HTTPS$suggestion")
   }
   private[sbt] def isInsecureUrl(str: String): Boolean = {
     // don't try to parse str as URL because it could contain $variable from Ivy pattern
@@ -415,8 +416,8 @@ private[librarymanagement] abstract class ResolverFunctions {
       || str.startsWith("http://127.0.0.1/")
       || str.startsWith("http://127.0.0.1:"))
   }
-  private[sbt] def validateURLRepository(repo: URLRepository, logger: Logger): Unit = {
-    if (repo.allowInsecureProtocol) ()
+  private[sbt] def validateURLRepository(repo: URLRepository, logger: Logger): Boolean = {
+    if (repo.allowInsecureProtocol) false
     else {
       val patterns = repo.patterns
       val ivy = patterns.ivyPatterns.headOption match {
@@ -430,34 +431,36 @@ private[librarymanagement] abstract class ResolverFunctions {
       if (ivy || art) {
         warnHttp(
           patterns.toString,
-          s""" or opt-in as Resolver.url("${repo.name}", url(...)).withAllowInsecureProtocol(true)""",
+          s""" or opt-in as Resolver.url("${repo.name}", url(...)).withAllowInsecureProtocol(true), or by using allowInsecureProtocol in repositories file""",
           logger
         )
-      }
+        true
+      } else false
     }
   }
 
-  private[sbt] def validateMavenRepo(repo: MavenRepo, logger: Logger): Unit =
-    if (repo.allowInsecureProtocol) ()
+  private[sbt] def validateMavenRepo(repo: MavenRepo, logger: Logger): Boolean =
+    if (repo.allowInsecureProtocol) false
     else if (isInsecureUrl(repo.root)) {
       warnHttp(
         repo.root,
-        s""" or opt-in as ("${repo.name}" at "${repo.root}").withAllowInsecureProtocol(true)""",
+        s""" or opt-in as ("${repo.name}" at "${repo.root}").withAllowInsecureProtocol(true), or by using allowInsecureProtocol in repositories file""",
         logger
       )
-    }
+      true
+    } else false
 
-  private[sbt] def validateArtifact(art: Artifact, logger: Logger): Unit =
-    if (art.allowInsecureProtocol) ()
-    else {
-      art.url foreach { url =>
-        if (isInsecureUrl(url.toString)) {
+  private[sbt] def validateArtifact(art: Artifact, logger: Logger): Boolean =
+    if (art.allowInsecureProtocol) false
+    else
+      art.url match {
+        case Some(url) if isInsecureUrl(url.toString) =>
           warnHttp(
             art.toString,
             " or opt-in using from(url(...), allowInsecureProtocol = true) on ModuleID or .withAllowInsecureProtocol(true) on Artifact",
             logger
           )
-        }
+          true
+        case _ => false
       }
-    }
 }