There are two types of security certificates that can be installed on your rig: root and client.
This chain of trust is where the security risk comes from.
What is a certificate used for?
Security on the internet is built on a web of trust.
If the HTTPS is trusted, then your rig successfully connects to the webserver.
If the certificate is not trusted, however, your rig will display an untrusted certificate warning.
This is designed to prevent you from being tricked into connecting to sites that you didnt mean to.
This should give you the confidence to allow the software access it needs.
This is why adding a root certificate is risky and should not be done lightly.
This could make it significantly easier for hackers to hack your rig.
You should almost never need to install a root certificate for any purpose.
Another place you could go to ask is thesecurity forum on stack exchange.
