Add a test to ensure invalid versions are skipped

Signed-off-by: ziad hany <ziadhany2016@gmail.com>

Author: ziadhany

vulnerabilities/tests/test_osv_v2.py

@@ -13,7 +13,9 @@
 import saneyaml
 from univers.version_constraint import VersionConstraint
 from univers.version_range import MavenVersionRange
+from univers.version_range import PypiVersionRange
 from univers.versions import MavenVersion
+from univers.versions import PypiVersion
 
 from vulnerabilities.importers.osv_v2 import get_explicit_affected_range
 from vulnerabilities.importers.osv_v2 import get_version_ranges_constraints
@@ -141,6 +143,15 @@ def test_get_explicit_affected_constraints():
         )
     )
 
+    # Invalid versions are skipped.
+    assert get_explicit_affected_range(
+        affected_pkg={"versions": ["qwqw4684", "4.10.2", "fhgj5449"]},
+        raw_id="GHSA-8hxh-r6f7-jf45",
+        supported_ecosystem="pypi",
+    ) == PypiVersionRange(
+        constraints=(VersionConstraint(comparator="=", version=PypiVersion(string="4.10.2")),)
+    )
+
 
 class TestOSVImporter(TestCase):
     def test_to_advisories_github1(self):