uv: Use native-tls (#36564)

mirror of https://github.com/servo/servo.git synced 2025-06-02 15:25:31 +00:00

uv by default uses baked in webpki certificates.
Using the system certificates is preferable for multiple reasons:

- OS updates will automatically update the certificates (including
revoking)
- Supports custom certificates installed on the system (corporate
networks)

uv does not enable this option by default, because it has a performance
overhead on macos.
In our scenarios, with long-running commands, the overhead is basically
not measurable.
I've been using the option on my mac for around 1 month now, without
noticing any degradation.

See also the previous discussion in
https://github.com/servo/book/issues/53 for some background.

Testing: We use `uv` in all our tests

Signed-off-by: Jonathan Schwender <schwenderjonathan@gmail.com>

This commit is contained in:

Jonathan Schwender

2025-04-16 13:47:49 +02:00

• committed by

GitHub

parent 6bad65a5a1

commit 94a9588bcc

No known key found for this signature in database

GPG key ID: B5690EEEBB952194

1 changed files with 1 additions and 0 deletions

									
										1

uv.toml
									
										Normal file
									
										View file
										
				@ -0,0 +1 @@

				native-tls = true

				`@ -0,0 +1 @@`
				`native-tls = true`

Rows
Columns

uv: Use native-tls (#36564)

1 uv.toml Normal file Unescape Escape View file

1

uv.toml Normal file

View file