client_certificate feature in azure_identity pulls in dependency on openssl

[dggsax]

Crate: azure_identity
Version: 0.27.0

When enabling the client_certificate feature to leverage the client_certificate_credential (https://github.com/Azure/azure-sdk-for-rust/blob/main/sdk/identity/azure_identity/src/client_certificate_credential.rs) the azure_identity crate pulls in a dependency requirement on openssl

azure-sdk-for-rust/sdk/identity/azure_identity/Cargo.toml

Line 44 in 88c8db4

client_certificate = ["openssl"]

There is internal guidance that discourages the use of the openssl crate (well, specifically the openssl-src crate I believe, I think things are compliant if using the vendored feature of openssl...) and so I had to temporarily not use the feature. Given how openssl is being used for performing the certificate authentication features, I wonder if other crates like https://github.com/hidekatsu-izuno/josekit-rs are a good alternative to use and then people who's organizations have security requirements around the openssl crate can avoid those challenges

Is there any advice or guidance for this? I know there are several related issues open, but none explicitely around the client_certificate feature :)