internal/ghsa: fix nil pointer dereference Change-Id: I6123f0d1dc47eb0f5de1c70f0e32d76659d5fe0e Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/581796 Auto-Submit: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Damien Neil <dneil@google.com>

commit: ed921e3e73ca7806597d968df51e4c9451a056bc [log] [tgz]
author: Tatiana Bradley <tatianabradley@google.com> Thu Apr 25 15:52:26 2024 -0400
committer: Gopher Robot <gobot@golang.org> Fri Apr 26 21:21:38 2024 +0000
tree: 942f723927d3a00df2dc0b6c85db9c9614fcdd3d
parent: 7a6fd5091f6e85af0ec3fc347023374c56d14405 [diff]
diff --git a/internal/ghsa/ghsa.go b/internal/ghsa/ghsa.go
index dfb7ba7..ba9ea3c 100644
--- a/internal/ghsa/ghsa.go
+++ b/internal/ghsa/ghsa.go

@@ -106,13 +106,17 @@
 	if sa.Vulnerabilities.PageInfo.HasNextPage {
 		return nil, fmt.Errorf("%s has more than 100 vulns", sa.GhsaID)
 	}
+	var permalink string
+	if sa.Permalink.URL != nil {
+		permalink = sa.Permalink.URL.String()
+	}
 	s := &SecurityAdvisory{
 		ID:          sa.GhsaID,
 		Identifiers: sa.Identifiers,
 		Summary:     sa.Summary,
 		Description: sa.Description,
 		Origin:      sa.Origin,
-		Permalink:   sa.Permalink.URL.String(),
+		Permalink:   permalink,
 		References:  sa.References,
 		PublishedAt: sa.PublishedAt,
 		UpdatedAt:   sa.UpdatedAt,
commit	ed921e3e73ca7806597d968df51e4c9451a056bc	[log] [tgz]
author	Tatiana Bradley <tatianabradley@google.com>	Thu Apr 25 15:52:26 2024 -0400
committer	Gopher Robot <gobot@golang.org>	Fri Apr 26 21:21:38 2024 +0000
tree	942f723927d3a00df2dc0b6c85db9c9614fcdd3d
parent	7a6fd5091f6e85af0ec3fc347023374c56d14405 [diff]