node_extra_ca_certs_mozilla_bundle
Advanced tools
If you are trying to connect to a secure website via nodejs. You may run into errors such as
If you are trying to connect to a secure website via nodejs. You may run into errors such as
UNABLE_TO_VERIFY_LEAF_SIGNATURE
Unable to verify the first certificate
It may be due to a couple of reasons. The Root CA certificate is missing in nodejs Or the site does not correctly install the intermediate certificates.
Typically you encounter these at the last minute, and usually, the server is not in your control; hence you cannot modify the certificate installation, and it is challenging to change code at that time.
When set, the well known "root" CAs (like VeriSign) will be extended with the extra certificates in file. The file should consist of one or more trusted certificates in PEM format.
NOTE: This environment variable is ignored when node runs as setuid root or has Linux file capabilities set.
However, it is cumbersome to create the PEM file for missing certificates manually and can be a security issue.
It generates three different bundles that can be used based on your needs:
You can use any of the above bundles with NODE_EXTRA_CA_CERTS.
npm install node_extra_ca_certs_mozilla_bundle
During the installation of the module, it downloads the latest certificates from the Mozilla database and builds the PEM file in node_modules/node_extra_ca_certs_mozilla_bundle/ca_bundle folder.
You can launch your script while using the above certificates using: NODE_EXTRA_CA_CERTS=node_modules/node_extra_ca_certs_mozilla_bundle/ca_bundle/ca_intermediate_root_bundle.pem node your_script.js
The PEM file bundle can also be used as a ca parameter for SSL options.
FAQs
If you are trying to connect to a secure website via nodejs. Although, the site may work in the browser, you may run into errors such as
The npm package node_extra_ca_certs_mozilla_bundle receives a total of 4,610 weekly downloads. As such, node_extra_ca_certs_mozilla_bundle popularity was classified as popular.
We found that node_extra_ca_certs_mozilla_bundle demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
React's CRA deprecation announcement sparked community criticism over framework recommendations, leading to quick updates acknowledging build tools like Vite as valid alternatives.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.
Security News
require(esm) backported to Node.js 20, easing the transition to ESM-only packages and reducing complexity for developers as Node 18 nears end-of-life.
