See https://github.com/nexB/vulnerablecode/pull/664
See #664