From cdcc8586a08fcc2860fe33aaadd860186ed75d05 Mon Sep 17 00:00:00 2001
From: Alan Agius <alanagius@google.com>
Date: Wed, 30 Aug 2023 08:52:21 +0000
Subject: [PATCH] refactor(@angular-devkit/build-angular): remove disabling
 certificate validation when inlining fonts

Disabling certificate validation is strongly discouraged and is not required for inling of fonts.

Addresses https://github.com/angular/angular-cli/security/code-scanning/29
Closes #25731
---
 .../build_angular/src/utils/index-file/inline-fonts.ts           | 1 -
 1 file changed, 1 deletion(-)

diff --git a/packages/angular_devkit/build_angular/src/utils/index-file/inline-fonts.ts b/packages/angular_devkit/build_angular/src/utils/index-file/inline-fonts.ts
index 4746d589d2..55ed024750 100644
--- a/packages/angular_devkit/build_angular/src/utils/index-file/inline-fonts.ts
+++ b/packages/angular_devkit/build_angular/src/utils/index-file/inline-fonts.ts
@@ -210,7 +210,6 @@ export class InlineFontsProcessor {
           url,
           {
             agent,
-            rejectUnauthorized: false,
             headers: {
               'user-agent':
                 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36',