Handle cases where dependencies do not have a specific version associated with them

steiza · steiza · commit 2bbc35549eba · 2023-03-10T11:19:35.000-05:00
diff --git a/main.go b/main.go
@@ -111,7 +111,12 @@ func (p Purl) String() string {
 		}
 	}
 
-	return prefix + url.QueryEscape(p.Name) + "@" + url.QueryEscape(p.Version)
+	suffix := ""
+	if p.Version != "" {
+		suffix = "@" + url.QueryEscape(p.Version)
+	}
+
+	return prefix + url.QueryEscape(p.Name) + suffix
 }
 
 func getLicense(p *Purl) (string, string, error) {
diff --git a/pkg/dependency-graph/client.go b/pkg/dependency-graph/client.go
@@ -83,7 +83,10 @@ func makeQuery(client api.GQLClient, repoOwner, repoName string, manifestCursor,
 		for _, eachDependencyNode := range eachManifestNode.Dependencies.Nodes {
 			packageManager := strings.ToLower(eachDependencyNode.PackageManager)
 			packageName := strings.ToLower(eachDependencyNode.PackageName)
-			packageVersion := eachDependencyNode.Requirements[2:]
+			packageVersion := ""
+			if len(eachDependencyNode.Requirements) > 2 {
+				packageVersion = eachDependencyNode.Requirements[2:]
+			}
 			if strings.HasPrefix(packageVersion, "v") {
 				packageVersion = packageVersion[1:]
 			}

Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,12 @@ func (p Purl) String() string {`
`111`	`111`	`}`
`112`	`112`	`}`
`113`	`113`
`114`		`- return prefix + url.QueryEscape(p.Name) + "@" + url.QueryEscape(p.Version)`
	`114`	`+ suffix := ""`
	`115`	`+ if p.Version != "" {`
	`116`	`+ suffix = "@" + url.QueryEscape(p.Version)`
	`117`	`+ }`
	`118`	`+`
	`119`	`+ return prefix + url.QueryEscape(p.Name) + suffix`
`115`	`120`	`}`
`116`	`121`
`117`	`122`	`func getLicense(p *Purl) (string, string, error) {`