Thanks for confirming!
As mentioned, pointing the bundled Node at your corporate root CA will clear this up for good — set NODE_EXTRA_CA_CERTS=/path/to/corp-root-ca.pem (a .pem file, not the disable-TLS flag) before running your script.
I’ll also raise a bug with the team for the bad error message. That opaque 500 should have surfaced the real cert failure!