Docker and zscaler - how to streamline the process/managing of certs

Many companies use a HTTPS proxy, which presents internal certificates for all sites. These certs need to be added to cert trust stores in container images. Go through various ways to do so (baking them in, mounting in as config at startup).

This was [started](https://docs.google.com/document/d/1NZxtxTfFOWcWNrkr2I08WAq4SIxpT0sY0rEeDQtQXzY/edit?usp=sharing) but never published.