The Hydrawise integration generates repeated warnings in the logs regarding SSL certificate verification when using AIOHTTPTransport. The warning is as follows:
/usr/local/lib/python3.13/site-packages/gql/transport/aiohttp.py:92: UserWarning: WARNING: By default, AIOHTTPTransport does not verify ssl certificates. This will be fixed in the next major version. You can set ssl=True to force the ssl certificate verification or ssl=False to disable this warning
warnings.warn(
This indicates that SSL certificate verification is disabled by default for the AIOHTTPTransport used by the Hydrawise integration. While this does not currently break functionality, it raises concerns about security and floods the logs with warnings.
Steps to Reproduce
- Set up the Hydrawise integration in Home Assistant.
- Monitor the logs under Settings > Logs or via
home-assistant.log. - Observe repeated warnings regarding SSL verification.
Expected Behavior
The integration should:
- Explicitly enable (
ssl=True) or disable (ssl=False) SSL certificate verification without generating warnings. - Provide a configuration option for users to control SSL verification behavior.
Actual Behavior
The integration defaults to no SSL verification, generating warnings during every request.
Proposed Solution
- Update the Hydrawise integration to explicitly set
ssl=Trueorssl=FalseforAIOHTTPTransport. - Add a configuration option in Home Assistant for users to control SSL verification:
hydrawise:
ssl_verify: true # Default should be true
Environment Details
- Home Assistant Version: 2025.2
- Hydrawise Integration Version: Latest
- Operating System: Home Assistant OS
- Python Version: 3.13
Logs
/usr/local/lib/python3.13/site-packages/gql/transport/aiohttp.py:92: UserWarning: WARNING: By default, AIOHTTPTransport does not verify ssl certificates. This will be fixed in the next major version. You can set ssl=True to force the ssl certificate verification or ssl=False to disable this warning
warnings.warn(
Additional Context
This issue seems related to how AIOHTTPTransport handles SSL certificates by default. The default behavior of disabling certificate verification raises security concerns and should be addressed proactively.