aboutcode-org
diff --git a/‎.github/workflows/sca-integration-osv.yml‎ renamed to ‎.github/workflows/sca-integration-osv-scanner.yml‎ b/‎.github/workflows/sca-integration-osv.yml‎ renamed to ‎.github/workflows/sca-integration-osv-scanner.yml‎
diff --git a/‎scanpipe/pipes/resolve.py‎
Lines changed: 3 additions & 0 deletions b/‎scanpipe/pipes/resolve.py‎
Lines changed: 3 additions & 0 deletions
@@ -408,6 +408,9 @@ def resolve_spdx_dependencies(input_location):
     return [
         spdx_relationship_to_dependency_data(spdx_relationship)
         for spdx_relationship in spdx_relationships
+        if spdx_relationship.spdx_id != "NOASSERTION"
+        and spdx_relationship.related_spdx_id != "NOASSERTION"
+        and spdx_relationship.relationship != "DESCRIBES"
     ]
Original file line number	Diff line number	Diff line change
`@@ -408,6 +408,9 @@ def resolve_spdx_dependencies(input_location):`
`408`	`408`	`return [`
`409`	`409`	`spdx_relationship_to_dependency_data(spdx_relationship)`
`410`	`410`	`for spdx_relationship in spdx_relationships`
	`411`	`+ if spdx_relationship.spdx_id != "NOASSERTION"`
	`412`	`+ and spdx_relationship.related_spdx_id != "NOASSERTION"`
	`413`	`+ and spdx_relationship.relationship != "DESCRIBES"`
`411`	`414`	`]`
`412`	`415`
`413`	`416`