Generate NSS Cert DB once and include it in project release

Rather than generating a new certificate every launch instance and updating the `cert9.db`, we should generate a single NSS cert database with our certificate and include that in the project release.  This would avoid requiring users to have access to `certutil` which is particularly an issue on Windows.