From 02d7aaffd852b1ae02e0c633a8b1fe3f37e2ed85 Mon Sep 17 00:00:00 2001
From: Prabhu Subramanian <prabhu@appthreat.com>
Date: Thu, 12 Sep 2024 13:43:49 +0100
Subject: [PATCH] Do not suffix s for all pypi packages. Fixes #341

Signed-off-by: Prabhu Subramanian <prabhu@appthreat.com>
---
 depscan/lib/normalize.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/depscan/lib/normalize.py b/depscan/lib/normalize.py
index 81f387f0..93320ed2 100644
--- a/depscan/lib/normalize.py
+++ b/depscan/lib/normalize.py
@@ -155,7 +155,8 @@ def create_pkg_variations(pkg_dict):
             # Issue #262
             # Eg: cpe:2.3:a:microsoft:azure_storage_blobs:*:*:*:*:*:python:*:*
             # pypi name is pkg:pypi/azure-storage-blob@12.8.0
-            if not name.endswith("s"):
+            # Issue #341 - do not change colorama to coloramas
+            if not name.endswith("s") and "-" in name:
                 name_aliases.add(name.replace("-", "_") + "s")
         vendor_aliases.add("pip")
         vendor_aliases.add("pypi")