Rely on Erlang/OTP 25+ and no more on CAStore (#76)

phoenixframework · Feb 2, 2025 · 83b786b · 83b786b
1 parent 7153c6e
commit 83b786b
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 8 deletions.
diff --git a/lib/esbuild.ex b/lib/esbuild.ex
@@ -29,9 +29,6 @@ defmodule Esbuild do
       Useful when you manage the esbuild executable with an external
       tool (eg. npm)
 
-    * `:cacerts_path` - the directory to find certificates for
-      https connections
-
     * `:path` - the path to find the esbuild executable at. By
       default, it is automatically downloaded and placed inside
       the `_build` directory of your current app

diff --git a/lib/esbuild/npm_registry.ex b/lib/esbuild/npm_registry.ex
@@ -91,7 +91,7 @@ defmodule Esbuild.NpmRegistry do
         ssl: [
           verify: :verify_peer,
           # https://erlef.github.io/security-wg/secure_coding_and_deployment_hardening/inets
-          cacertfile: cacertfile() |> String.to_charlist(),
+          cacerts: :public_key.cacerts_get(),
           depth: 2,
           customize_hostname_check: [
             match_fun: :public_key.pkix_verify_hostname_match_fun(:https)
@@ -128,10 +128,6 @@ defmodule Esbuild.NpmRegistry do
     end
   end
 
-  defp cacertfile() do
-    Application.get_env(:esbuild, :cacerts_path) || CAStore.file_path()
-  end
-
   defp verify_signature!(message, signature) do
     :public_key.verify(
       message,