| ▲ | thewisenerd 4 days ago | |
thankfully more and more projects are supporting the "standard" SSL_CERT_DIR/SSL_CERT_FILE environment variables [1] i think requests is a tricky one, as it _should_ be supporting it already based on the PR [2], but looks like it was merged in the 3.x branch and idk where that is, release-wise. there is also native TLS on linux (idk what exactly you call it); but [1] https://github.com/rustls/rustls-native-certs/issues/16#issu... | ||
| ▲ | thewisenerd 4 days ago | parent [-] | |
slightly related, one of the more interesting issues i've faced due to mitm tls by the $job mandated CASB (cloud-access security broker) is when python 3.13 [1] introduced some stricter validations and the CASB issued certs were not compliant (missing AKI); which broke REQUESTS_CA_BUNDLE/SSL_CERT_FILE for us [1] https://discuss.python.org/t/python-3-13-x-ssl-security-chan... | ||