The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
We should include the notion of a patched security provider and test on that. See https://developer.android.com/training/articles/security-gms-provider.html for more details.