make the trufflehog parser not error out when receiving an empty file

Author: northdpole

components/scanners/trufflehog/internal/transformer/transformer.go

@@ -207,7 +207,10 @@ func (g *trufflehogTransformer) Transform(ctx context.Context) ([]*ocsf.Vulnerab
 		}
 		return nil, errors.Errorf("failed to read raw output file '%s': %w", g.rawOutFilePath, err)
 	}
-
+	if len(b) == 0 {
+		logger.Info("input file is empty, exiting without findings")
+		return []*ocsf.VulnerabilityFinding{}, nil
+	}
 	truffleResults, err := ParseMultiJSONMessages(b)
 	if err != nil {
 		return nil, errors.Errorf("could not parse trufflehog file with multiple messages, err: %w", err)

components/scanners/trufflehog/internal/transformer/transformer_test.go

@@ -3,6 +3,7 @@ package transformer
 import (
 	"context"
 	_ "embed"
+	"os"
 	"testing"
 	"time"
 
@@ -218,4 +219,20 @@ func TestTrufflehogTransformer_Transform(t *testing.T) {
 			assert.NotEmptyf(t, vulnerability.Cwe.Caption, "Unexpected empty value for caption in vulnerability for finding %d", idx)
 		}
 	})
+	t.Run("it should return an empty finding array when the input file is empty", func(t *testing.T) {
+		emptyFilePath := "./testdata/empty_trufflehog.json"
+		require.NoError(t, os.WriteFile(emptyFilePath, []byte{}, 0644))
+		defer func() { require.NoError(t, os.Remove(emptyFilePath)) }()
+
+		ocsfTransformer, err := New(
+			TrufflehogRawOutFilePath(emptyFilePath),
+			TrufflehogTransformerWithTarget(ocsffindinginfo.DataSource_TARGET_TYPE_REPOSITORY),
+			TrufflehogTransformerWithClock(clock),
+		)
+		require.NoError(t, err)
+
+		findings, err := ocsfTransformer.Transform(ctx)
+		require.NoError(t, err)
+		assert.Empty(t, findings, "Expected no findings for an empty input file")
+	})
 }