openclaw/hermes-agent
1
0
Fork 0
Code Issues Pull Requests Actions 9 Packages Projects Releases Wiki Activity

test(model-catalog): use exact URL equality in fallback tests

Browse Source 
CodeQL flagged 'hermes-agent.nousresearch.com' in url and similar substring
checks as py/incomplete-url-substring-sanitization. The rule is about URL
allowlist checks in production code, not test routing — there's no
security boundary here. Switch to url == self.PRIMARY / self.FALLBACK,
which is the same semantic and silences the rule.
This commit is contained in:
teknium1
2026-05-29 00:10:59 -07:00
committed by Teknium
parent f2d88c820c
commit bc736ff543
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
tests/hermes_cli/test_model_catalog.py
View File

@ -206,7 +206,7 @@ class TestFallbackChain:
def fake_fetch(url, timeout):
calls.append(url)
if "hermes-agent.nousresearch.com" in url:
if url == self.PRIMARY:
return None # simulate Vercel 403
return _valid_manifest()
@ -245,7 +245,7 @@ class TestFallbackChain:
def fake_fetch(url, timeout):
calls.append(url)
if "hermes-agent.nousresearch.com" in url:
if url == self.PRIMARY:
return None
return manifest
@ -253,7 +253,7 @@ class TestFallbackChain:
result = model_catalog.get_catalog(force_refresh=True)
assert result == manifest
assert any("raw.githubusercontent.com" in c for c in calls)
assert self.FALLBACK in calls
class TestCuratedAccessors: