Merge pull request #29 from AmmarRabie/fix-included-comments-when-parsing-requirement-dependency

anthonyharrison · web-flow · commit 9c67931e5aa1 · 2025-01-03T17:32:35.000Z
ignore anything after # when parsing requirements.txt
diff --git a/sbom4python/scanner.py b/sbom4python/scanner.py
@@ -570,7 +570,8 @@ def process_requirements(self, filename):
             print(f"Unable to process requirements file {filename}")
 
     def _process_requirement_dependency(self, dependency, filename):
-        if len(dependency.strip()) > 0:
+        dependency = dependency.split("#")[0].strip()
+        if len(dependency) > 0:
             # Ignore anything after ; e.g. python_version<"3.8"
             element = dependency.strip().split(";")[0]
             # Check for pinned dependency
