[slt2021]

You are not supposed to mess with certificates inside containers.

Security team should have provided you with golden image with hardened config, latest patches installed, and corporate certs installed in certificate store.

If they didnt, they aint doing correct DevSecOps/SecDevOps or whatever the fancy term is for integrating security within development team.

It is a big red flag that any developer can pull whatever image for container running in production, possibly with unpatched vulnerabilities and loose config and ports open, and running with root privileges, etc.

Usually stuff has to be vetted and checked prior to being deployed in production environment