oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2025-11-18 08:53:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

chore: improve spdx purl decoding (#1996)

Browse Source 
Signed-off-by: Keith Zantow <kzantow@gmail.com>
This commit is contained in:
Keith Zantow 2023-08-04 11:43:21 -04:00 committed by GitHub
parent 79014ed8c8
commit aaf767f8d3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 59 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
syft/formats/common/spdxhelpers/to_syft_model.go
View File

@ -467,11 +467,11 @@ func toSyftPackage(p *spdx.Package) pkg.Package {
} }
func purlValue(purl packageurl.PackageURL) string { func purlValue(purl packageurl.PackageURL) string {
p := purl.String() val := purl.String()
if p == "pkg:/" { if _, err := packageurl.FromString(val); err != nil {
return "" return ""
} }
return p return val
} }
func parseSPDXLicenses(p *spdx.Package) []pkg.License { func parseSPDXLicenses(p *spdx.Package) []pkg.License {

56
syft/formats/common/spdxhelpers/to_syft_model_test.go
View File

@ -11,6 +11,7 @@ import (
"github.com/stretchr/testify/assert" "github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require" "github.com/stretchr/testify/require"
"github.com/anchore/packageurl-go"
"github.com/anchore/syft/syft/artifact" "github.com/anchore/syft/syft/artifact"
"github.com/anchore/syft/syft/file" "github.com/anchore/syft/syft/file"
"github.com/anchore/syft/syft/pkg" "github.com/anchore/syft/syft/pkg"
@ -552,3 +553,58 @@ func Test_convertToAndFromFormat(t *testing.T) {
}) })
} }
} }
func Test_purlValue(t *testing.T) {
tests := []struct {
purl packageurl.PackageURL
expected string
}{
{
purl: packageurl.PackageURL{},
expected: "",
},
{
purl: packageurl.PackageURL{
Name: "name",
Version: "version",
},
expected: "",
},
{
purl: packageurl.PackageURL{
Type: "typ",
Version: "version",
},
expected: "",
},
{
purl: packageurl.PackageURL{
Type: "typ",
Name: "name",
Version: "version",
},
expected: "pkg:typ/name@version",
},
{
purl: packageurl.PackageURL{
Type: "typ",
Name: "name",
Version: "version",
Qualifiers: packageurl.Qualifiers{
{
Key: "q",
Value: "v",
},
},
},
expected: "pkg:typ/name@version?q=v",
},
}
for _, test := range tests {
t.Run(test.purl.String(), func(t *testing.T) {
got := purlValue(test.purl)
require.Equal(t, test.expected, got)
})
}
}