Description: Retire not generating correct purl when creating cyclonedx bom which when consumed by dependency track does not shows vulnerability. purl generated is pkg:npm/moment.js@2.8.4
Expected behaviour: purl should be generated as pkg:npm/moment@2.8.4
How did you run the tool? Command line? Browser extension? command line
Retire.js version: 4.2.1
node version: 18.13.0
Description: Retire not generating correct purl when creating cyclonedx bom which when consumed by dependency track does not shows vulnerability. purl generated is pkg:npm/moment.js@2.8.4
Expected behaviour: purl should be generated as pkg:npm/moment@2.8.4