From 79cffa9232a1bb67a6184fc7f6b5139bec5d9d8c Mon Sep 17 00:00:00 2001
From: johnncenae <johnnncenaaa77@gmail.com>
Date: Thu, 30 Apr 2026 12:27:28 +0300
Subject: [PATCH] auth: coerce tls insecure flag safely instead of using Python
 truthiness

---
 tests/hermes_cli/test_auth_nous_provider.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/tests/hermes_cli/test_auth_nous_provider.py b/tests/hermes_cli/test_auth_nous_provider.py
index 12931108..a8e337c1 100644
--- a/tests/hermes_cli/test_auth_nous_provider.py
+++ b/tests/hermes_cli/test_auth_nous_provider.py
@@ -77,10 +77,12 @@ class TestResolveVerifyFallback:
         assert result is False
 
     def test_string_false_in_auth_state_does_not_disable_tls_verify(self):
+        import ssl
         from hermes_cli.auth import _resolve_verify
 
         result = _resolve_verify(auth_state={"tls": {"insecure": "false"}})
-        assert result is True
+        assert result is not False
+        assert result is True or isinstance(result, ssl.SSLContext)
 
     def test_string_true_in_auth_state_disables_tls_verify(self):
         from hermes_cli.auth import _resolve_verify