fix: add no instruction tests, change formatting

snyk-will · snyk-will · commit 4f48c4d51711 · 2025-10-09T09:29:18.000+01:00
diff --git a/internal/presenters/__snapshots__/presenter_unified_finding_test.snap b/internal/presenters/__snapshots__/presenter_unified_finding_test.snap
@@ -15,7 +15,8 @@ License issues: 1
  ✗ [MEDIUM] LGPL-3.0 license
    Finding ID: snyk:lic:npm:web3-core:LGPL-3.0
    Info: https://snyk.io/vuln/snyk:lic:npm:web3-core:LGPL-3.0
-   Instructions: LGPL-3.0: This license requires source code disclosure when modified.
+   Legal instructions:
+   ○ for LGPL-3.0: This license requires source code disclosure when modified.
 
 
 ╭─────────────────────────────────────────────────────────╮
@@ -49,8 +50,9 @@ License issues: 1
  ✗ [HIGH] GPL-3.0 OR MIT license
    Finding ID: snyk:lic:npm:dual-pkg:GPL-3.0-OR-MIT
    Info: https://snyk.io/vuln/snyk:lic:npm:dual-pkg:GPL-3.0-OR-MIT
-   Instructions: GPL-3.0: Strong copyleft license. Requires source code disclosure for modifications.
-                 MIT: Permissive license. Must include original copyright notice.
+   Legal instructions:
+   ○ for GPL-3.0: Strong copyleft license. Requires source code disclosure for modifications.
+   ○ for MIT: Permissive license. Must include original copyright notice.
 
 
 ╭─────────────────────────────────────────────────────────╮
@@ -70,3 +72,32 @@ License issues: 1
                                                             
 
 ---
+
+[TestUnifiedFindingPresenter_CliOutput/snapshot_test_with_license_without_instructions - 1]
+
+Testing  ...
+
+License issues: 1
+
+ ✗ [MEDIUM] Apache-2.0 license
+   Finding ID: snyk:lic:npm:test-pkg:Apache-2.0
+   Info: https://snyk.io/vuln/snyk:lic:npm:test-pkg:Apache-2.0
+
+
+╭─────────────────────────────────────────────────────────╮
+│ Test Summary                                            │
+│                                                         │
+│   Organization:                                         │
+│   Test type:         open-source                        │
+│   Project path:                                         │
+│                                                         │
+│   Total license issues: 1                               │
+│   Ignored: 0 [ 0 CRITICAL  0 HIGH  0 MEDIUM  0 LOW ]    │
+│   Open   : 1 [ 0 CRITICAL  0 HIGH  1 MEDIUM  0 LOW ]    │
+╰─────────────────────────────────────────────────────────╯
+💡 Tip
+
+   To view ignored issues, use the --include-ignores option.
+                                                            
+
+---
diff --git a/internal/presenters/funcs.go b/internal/presenters/funcs.go
@@ -17,8 +17,7 @@ import (
 
 const (
 	notApplicable = "N/A"
-	// Template field indentation: 3 spaces + "Instructions: " = 17 spaces for continuation.
-	instructionsContinuationIndent = "                 "
+	bulletPoint   = "○"
 )
 
 // add returns the sum of two integers.
@@ -316,8 +315,6 @@ func isLicenseFinding(finding testapi.FindingData) bool {
 }
 
 // getLicenseInstructions returns license instructions for a license finding.
-// For packages with multiple licenses, instructions are formatted as "License: instruction"
-// on separate lines.
 func getLicenseInstructions(finding testapi.FindingData) string {
 	if finding.Attributes == nil {
 		return ""
@@ -344,22 +341,21 @@ func getLicenseInstructions(finding testapi.FindingData) string {
 
 		instructions := buildInstructionsList(p.Instructions)
 		if len(instructions) > 0 {
-			return strings.Join(instructions, "\n"+instructionsContinuationIndent)
+			return "\n" + strings.Join(instructions, "\n")
 		}
 	}
 	return ""
 }
 
-// buildInstructionsList formats license instructions for display.
-// Each instruction is prefixed with its license name for clarity.
+// buildInstructionsList formats license instructions prefixing with a bullet point and license name.
 func buildInstructionsList(instructionsList []testapi.SnykvulndbLicenseInstructions) []string {
 	instructions := make([]string, 0, len(instructionsList))
 
 	for _, inst := range instructionsList {
 		if inst.Content == "" {
 			continue
 		}
-		instructions = append(instructions, fmt.Sprintf("%s: %s", inst.License, inst.Content))
+		instructions = append(instructions, fmt.Sprintf("   %s for %s: %s", bulletPoint, inst.License, inst.Content))
 	}
 	return instructions
 }
diff --git a/internal/presenters/presenter_unified_finding_test.go b/internal/presenters/presenter_unified_finding_test.go
@@ -318,6 +318,60 @@ func TestUnifiedFindingPresenter_CliOutput(t *testing.T) {
 		snaps.MatchSnapshot(t, buffer.String())
 	})
 
+	t.Run("snapshot test with license without instructions", func(t *testing.T) {
+		config := configuration.New()
+		buffer := &bytes.Buffer{}
+		lipgloss.SetColorProfile(termenv.Ascii)
+
+		// Create a license finding without instructions
+		licenseFinding := testapi.FindingData{
+			Id:   util.Ptr(uuid.MustParse("55555555-5555-5555-5555-555555555555")),
+			Type: util.Ptr(testapi.Findings),
+			Attributes: &testapi.FindingAttributes{
+				Title: "Apache-2.0 license",
+				Rating: testapi.Rating{
+					Severity: testapi.Severity("medium"),
+				},
+				Problems: func() []testapi.Problem {
+					var p testapi.Problem
+					err := p.FromSnykLicenseProblem(testapi.SnykLicenseProblem{
+						Id:           "snyk:lic:npm:test-pkg:Apache-2.0",
+						License:      "Apache-2.0",
+						Instructions: []testapi.SnykvulndbLicenseInstructions{}, // No instructions
+					})
+					assert.NoError(t, err)
+					return []testapi.Problem{p}
+				}(),
+			},
+		}
+
+		projectResult := &presenters.UnifiedProjectResult{
+			Findings: []testapi.FindingData{licenseFinding},
+			Summary: &json_schemas.TestSummary{
+				Type:             "open-source",
+				Path:             "test/path",
+				SeverityOrderAsc: []string{"low", "medium", "high", "critical"},
+				Results: []json_schemas.TestSummaryResult{
+					{
+						Severity: "medium",
+						Open:     1,
+						Total:    1,
+					},
+				},
+			},
+		}
+
+		presenter := presenters.NewUnifiedFindingsRenderer(
+			[]*presenters.UnifiedProjectResult{projectResult},
+			config,
+			buffer,
+		)
+
+		err := presenter.RenderTemplate(presenters.DefaultTemplateFiles, presenters.DefaultMimeType)
+		assert.NoError(t, err)
+		snaps.MatchSnapshot(t, buffer.String())
+	})
+
 	// summary shows security only when there are vulnerability findings and no license findings
 	t.Run("summary shows only security when no license issues", func(t *testing.T) {
 		config := configuration.New()
@@ -553,6 +607,52 @@ func TestUnifiedFindingPresenter_LicenseInstructions(t *testing.T) {
 	assert.NoError(t, err)
 
 	out := buffer.String()
-	assert.Contains(t, out, "Instructions:")
-	assert.Contains(t, out, "This license requires you to disclose source code changes.")
+	assert.Contains(t, out, "Legal instructions:")
+	assert.Contains(t, out, "○ for LGPL-3.0: This license requires you to disclose source code changes.")
+}
+
+// TestUnifiedFindingPresenter_LicenseWithoutInstructions verifies that license findings without instructions don't show the instructions field.
+func TestUnifiedFindingPresenter_LicenseWithoutInstructions(t *testing.T) {
+	config := configuration.New()
+	buffer := &bytes.Buffer{}
+	lipgloss.SetColorProfile(termenv.Ascii)
+
+	licenseFinding := testapi.FindingData{
+		Id:   util.Ptr(uuid.New()),
+		Type: util.Ptr(testapi.Findings),
+		Attributes: &testapi.FindingAttributes{
+			Title: "MIT license",
+			Rating: testapi.Rating{
+				Severity: testapi.Severity("low"),
+			},
+			Problems: func() []testapi.Problem {
+				var p testapi.Problem
+				err := p.FromSnykLicenseProblem(testapi.SnykLicenseProblem{
+					Id:           "snyk:lic:npm:test-pkg:MIT",
+					License:      "MIT",
+					Instructions: []testapi.SnykvulndbLicenseInstructions{},
+				})
+				assert.NoError(t, err)
+				return []testapi.Problem{p}
+			}(),
+		},
+	}
+
+	projectResult := &presenters.UnifiedProjectResult{
+		Findings: []testapi.FindingData{licenseFinding},
+		Summary: &json_schemas.TestSummary{
+			Type:             "open-source",
+			Path:             "test/path",
+			SeverityOrderAsc: []string{"low", "medium", "high", "critical"},
+			Results:          []json_schemas.TestSummaryResult{{Severity: "low", Open: 1, Total: 1}},
+		},
+	}
+
+	presenter := presenters.NewUnifiedFindingsRenderer([]*presenters.UnifiedProjectResult{projectResult}, config, buffer)
+	err := presenter.RenderTemplate(presenters.DefaultTemplateFiles, presenters.DefaultMimeType)
+	assert.NoError(t, err)
+
+	out := buffer.String()
+	assert.NotContains(t, out, "Legal instructions:")
+	assert.Contains(t, out, "MIT license")
 }
diff --git a/internal/presenters/templates/unified_finding.tmpl b/internal/presenters/templates/unified_finding.tmpl
@@ -26,7 +26,7 @@
 
 			{{- if isLicenseFinding . }}
 				{{- with (getLicenseInstructions .) }}
-   Instructions: {{ . }}
+   Legal instructions:{{ . }}
 				{{- end }}
 			{{- end }}
 

Original file line number	Diff line number	Diff line change
`@@ -17,8 +17,7 @@ import (`
`17`	`17`
`18`	`18`	`const (`
`19`	`19`	`notApplicable = "N/A"`
`20`		`- // Template field indentation: 3 spaces + "Instructions: " = 17 spaces for continuation.`
`21`		`- instructionsContinuationIndent = " "`
	`20`	`+ bulletPoint = "○"`
`22`	`21`	`)`
`23`	`22`
`24`	`23`	`// add returns the sum of two integers.`
`@@ -316,8 +315,6 @@ func isLicenseFinding(finding testapi.FindingData) bool {`
`316`	`315`	`}`
`317`	`316`
`318`	`317`	`// getLicenseInstructions returns license instructions for a license finding.`
`319`		`-// For packages with multiple licenses, instructions are formatted as "License: instruction"`
`320`		`-// on separate lines.`
`321`	`318`	`func getLicenseInstructions(finding testapi.FindingData) string {`
`322`	`319`	`if finding.Attributes == nil {`
`323`	`320`	`return ""`
`@@ -344,22 +341,21 @@ func getLicenseInstructions(finding testapi.FindingData) string {`
`344`	`341`
`345`	`342`	`instructions := buildInstructionsList(p.Instructions)`
`346`	`343`	`if len(instructions) > 0 {`
`347`		`- return strings.Join(instructions, "\n"+instructionsContinuationIndent)`
	`344`	`+ return "\n" + strings.Join(instructions, "\n")`
`348`	`345`	`}`
`349`	`346`	`}`
`350`	`347`	`return ""`
`351`	`348`	`}`
`352`	`349`
`353`		`-// buildInstructionsList formats license instructions for display.`
`354`		`-// Each instruction is prefixed with its license name for clarity.`
	`350`	`+// buildInstructionsList formats license instructions prefixing with a bullet point and license name.`
`355`	`351`	`func buildInstructionsList(instructionsList []testapi.SnykvulndbLicenseInstructions) []string {`
`356`	`352`	`instructions := make([]string, 0, len(instructionsList))`
`357`	`353`
`358`	`354`	`for _, inst := range instructionsList {`
`359`	`355`	`if inst.Content == "" {`
`360`	`356`	`continue`
`361`	`357`	`}`
`362`		`- instructions = append(instructions, fmt.Sprintf("%s: %s", inst.License, inst.Content))`
	`358`	`+ instructions = append(instructions, fmt.Sprintf(" %s for %s: %s", bulletPoint, inst.License, inst.Content))`
`363`	`359`	`}`
`364`	`360`	`return instructions`
`365`	`361`	`}`