Shortwave flatpak does not use the system CA certificates
I'm running Shortwave on a laptop controlled by my employer, which has installed a self-signed root CA certificate that allows them to snoop all my SSL traffic. This is a common corporate practice. Products like Cloudflare Zero Trust/WARP do this.
When connected to the employer's VPN, Shortwave cannot refresh the station list over SSL/TLS, nor can it play streams that broadcast over SSL/TLS.
Worth reading: https://github.com/flatpak/flatpak/issues/2721