Stop providing a hardcoded CA bundle

[maxbelanger]

The SDK no longer provides a CA bundle to verify SSL connections. This also allows us to remove the runtime dependency on pkg_resources and thus setuptools.

The ca_certs parameter is still supported, so users can pin with their own CA bundle if they so choose. Otherwise, the default verification mechanism in the requests library now applies (this uses certifi and/or system certificates, depending on the configuration).

Improves integration tests to cover both scenarios (i.e. when a bundle is provided, and when one isn't).

Checklist

General Contributing

• Have you read the Code of Conduct and signed the CLA?

Is This a Code Change?

• SDK Code Change
• Example/Test Code Change

Validation

• Does tox pass?
• Do the tests pass?

[sderickson]

Looks good, thanks Max!

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 64.26%. Comparing base (75596da) to head (d5ee9c8).

Additional details and impacted files

@@ Coverage Diff @@ ## main #489 +/- ## ======================================= Coverage 64.26% 64.26% ======================================= Files 31 31 Lines 52609 52606 -3 Branches 3841 3841 ======================================= + Hits 33807 33808 +1  + Misses 18641 18638 -3  + Partials 161 160 -1 

Flag	Coverage Δ
integration	64.17% <100.00%> (+<0.01%)	⬆️
unit	63.70% <100.00%> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[april]

Just a few minor changes

[april]

Can we remove these comments, or is the intention to fix this?

[maxbelanger]

The intention is to fix this in a future PR. This is also not technically introduced in this PR, I've just moved this test out of the class.