feat: ✨ add Zscaler support

Author: tomgrv

src/zscaler/configure-wrapper.sh

@@ -0,0 +1,59 @@
+#!/bin/sh
+
+set -eu
+
+#### Goto repository root
+cd "$(git rev-parse --show-toplevel)" >/dev/null
+
+SCRIPT_DIR="$(dirname "$0")"
+WRAPPER_SOURCE="$SCRIPT_DIR/stubs/.devcontainer/.zscaler/zscaler-curl.sh"
+CURLRC_SOURCE="$SCRIPT_DIR/stubs/.devcontainer/.zscaler/root/.curlrc"
+WRAPPER_TARGET="/usr/local/bin/zscaler-curl"
+CURL_BIN="/usr/bin/curl"
+CURL_REAL_BIN="/usr/bin/curl.real"
+CURRENT_USER="${SUDO_USER:-$(id -un)}"
+CURRENT_HOME="$(getent passwd "$CURRENT_USER" | cut -d: -f6)"
+
+run_as_root() {
+	if [ "$(id -u)" -eq 0 ]; then
+		"$@"
+	else
+		sudo "$@"
+	fi
+}
+
+if [ ! -f "$WRAPPER_SOURCE" ]; then
+	zz_log e "Missing wrapper source: {U $WRAPPER_SOURCE}"
+	exit 1
+fi
+
+if [ ! -f "$CURLRC_SOURCE" ]; then
+	zz_log e "Missing curl config source: {U $CURLRC_SOURCE}"
+	exit 1
+fi
+
+if [ -z "$CURRENT_HOME" ] || [ ! -d "$CURRENT_HOME" ]; then
+	zz_log e "Could not resolve home directory for user: {U $CURRENT_USER}"
+	exit 1
+fi
+
+zz_log i "Installing Zscaler curl wrapper to {U $WRAPPER_TARGET}"
+run_as_root install -m 755 "$WRAPPER_SOURCE" "$WRAPPER_TARGET"
+
+if [ -L "$CURL_BIN" ] && [ "$(readlink -f "$CURL_BIN")" = "$WRAPPER_TARGET" ]; then
+	zz_log i "curl is already routed through Zscaler wrapper"
+else
+	if [ ! -e "$CURL_REAL_BIN" ]; then
+		zz_log i "Preserving original curl as {U $CURL_REAL_BIN}"
+		run_as_root mv "$CURL_BIN" "$CURL_REAL_BIN"
+	fi
+
+	zz_log i "Linking {U $CURL_BIN} to {U $WRAPPER_TARGET}"
+	run_as_root ln -sfn "$WRAPPER_TARGET" "$CURL_BIN"
+fi
+
+zz_log i "Installing curl configuration to {U $CURRENT_HOME/.curlrc}"
+run_as_root install -m 644 "$CURLRC_SOURCE" "$CURRENT_HOME/.curlrc"
+run_as_root chown "$CURRENT_USER":"$(id -gn "$CURRENT_USER")" "$CURRENT_HOME/.curlrc"
+
+zz_log s "Zscaler curl wrapper configured for {U $CURRENT_USER}"

src/zscaler/stubs/.devcontainer/.zscaler/Dockerfile

@@ -0,0 +1,17 @@
+FROM mcr.microsoft.com/devcontainers/base:noble
+# Install Zscaler certificates
+RUN apt-get update && apt-get install -y ca-certificates curl jq
+COPY --chmod=755 ./certs/zscaler.pem /usr/local/share/ca-certificates/zscaler.crt
+RUN update-ca-certificates
+# Export env
+ENV NODE_EXTRA_CA_CERTS=/usr/local/share/ca-certificates/zscaler.crt
+ENV SSL_CERT_FILE=/usr/local/share/ca-certificates/zscaler.crt
+ENV CURL_CA_BUNDLE=/usr/local/share/ca-certificates/zscaler.crt
+ENV COMPOSER_CA_FILE=/usr/local/share/ca-certificates/zscaler.crt
+ENV GIT_SSL_CAINFO=/usr/local/share/ca-certificates/zscaler.crt
+# Install Zscaler curl wrapper
+COPY --chmod=755 ./zscaler-curl.sh /usr/local/bin/zscaler-curl
+COPY --chmod=755 ./root/.* /root/
+RUN mv /usr/bin/curl /usr/bin/curl.real && \
+    ln -s /usr/local/bin/zscaler-curl /usr/bin/curl
+

stubs/.devcontainer/certs/.gitkeep …bs/.devcontainer/.zscaler/certs/.gitkeepstubs/.devcontainer/certs/.gitkeep renamed to src/zscaler/stubs/.devcontainer/.zscaler/certs/.gitkeep stubs/.devcontainer/certs/.gitkeep renamed to src/zscaler/stubs/.devcontainer/.zscaler/certs/.gitkeep

@@ -0,0 +1,3 @@
+--capath /etc/ssl/certs/
+--cookie-jar /tmp/cookies.txt
+--location