feat: skip the license details

snyk-tech-services · May 27, 2021 · 1884886 · 1884886
1 parent 0e30b5b
commit 1884886
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 61 deletions.
diff --git a/src/lib/index.ts b/src/lib/index.ts
@@ -15,8 +15,8 @@ export function convertSnykTestOutputToSPDX(data: SnykTestOutput): SPDXv3 {
     documentNamespace: generateDocumentNameSpace(outputFileName),
     description: `Snyk test result for project ${data.projectName} in SPDX SBOM format`,
     created: Date.now().toString(),
-    vulnerabilities: data.vulnerabilities.map((i: SnykIssue) =>
-      convertSnykIssueToSpdx(i),
-    ),
+    vulnerabilities: data.vulnerabilities
+      .filter((i: SnykIssue) => i.type == undefined)
+      .map((i: SnykIssue) => convertSnykIssueToSpdx(i)),
   };
 }
diff --git a/src/types.ts b/src/types.ts
@@ -148,6 +148,7 @@ export interface SnykIssue {
   references: SnykIssueReference[];
   creationTime: string;
   identifiers: SnykIssueIdentifiers;
+  type : string | undefined;
 }
 
 export interface SnykIssueSemver {

diff --git a/test/lib/__snapshots__/index.spec.ts.snap b/test/lib/__snapshots__/index.spec.ts.snap
@@ -1068,58 +1068,5 @@ Upgrade \`jinja2\` to version 2.8.1 or higher.
     ],
     "summary": "Sandbox Bypass",
   },
-  Object {
-    "details": "MIT license",
-    "externalReferences": Array [
-      Object {
-        "externalReferencesRelationships": Array [],
-        "modified": undefined,
-        "published": "2021-05-23T11:15:36.845Z",
-        "withdrawn": undefined,
-      },
-    ],
-    "id": "snyk:lic:pip:pytz:MIT",
-    "name": "snyk:lic:pip:pytz:MIT",
-    "relationships": Array [
-      Object {
-        "affect": Object {
-          "to": Array [
-            "[email protected]",
-            "[email protected]",
-            "[email protected]",
-          ],
-          "type": "AFFECTS",
-        },
-        "foundBy": Object {
-          "to": undefined,
-          "type": "FOUND_BY",
-        },
-        "ratedBy": Object {
-          "cwes": Array [],
-          "rating": Array [
-            Object {
-              "method": "undefined",
-              "score": Array [
-                Object {
-                  "base": undefined,
-                  "exploitability": undefined,
-                  "impact": "[2005a,)",
-                },
-              ],
-              "severity": "high",
-              "vector": undefined,
-            },
-          ],
-          "to": undefined,
-          "type": "RATED_BY",
-        },
-        "suppliedBy": Object {
-          "to": undefined,
-          "type": "SUPPLIED_BY",
-        },
-      },
-    ],
-    "summary": "MIT license",
-  },
 ]
 `;
diff --git a/test/lib/index.spec.ts b/test/lib/index.spec.ts
@@ -71,10 +71,8 @@ describe('convertSnykTestOutputToSPDX', () => {
     });
     expect(res.vulnerabilities.sort()).toMatchSnapshot();
     // TODO: comment out once functionality in place
-    // expect(
-    //   (res.vulnerabilities as any).find(
-    //     (i: any) => i.id === 'snyk:lic:pip:pytz:MIT',
-    //   ),
-    // ).toEqual([]);
+    expect(
+      res.vulnerabilities.find((i) => i.id === 'snyk:lic:pip:pytz:MIT'),
+    ).toEqual(undefined);
   });
 });