As the readme says: 'Also removes any user trust settings for each certificate'.

It's not intended as patch or fix for the CA system which is broken by design - merely something that I was interested in trying.