DeepSource’s root domain makes use of Let’s Encrypt for serving traffic over HTTPS. On 30th September, 2021, Let’s Encrypt expired their DST Root CA X3 root certificate and has now moved to ISRG Root X1 root certificate. This might have no implications on your end, but at the bare minimum, you might encounter an error when running
curl on our endpoints (e.g., downloading our CLI) as shown below
curl: (60) server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none
This simply indicates that the client accessing the endpoint has to trust the new ISRG Root X1 root certificate. Steps on how to make the client trust the root certificate is beyond the scope of this post. Below is the link to the expiration notice declared by Let’s Encrypt for reference. Please feel free to reach out for any questions or concerns regarding this change.