Cleanup requirement string to avoid packvers parsing issues

Extract clean name and version from requirements instead of using
dumps() output that includes hash options and other pip-specific
syntax that `packvers.requirements.Requirement` cannot parse.

Resolves: #243.

Signed-off-by: Marcel Bochtler <marcel.bochtler@bosch.com>

Author: MarcelBochtler

src/_packagedcode/pypi.py

@@ -534,7 +534,7 @@ def parse(cls, location):
                     for metapath in path.iterdir():
                         if not metapath.name.endswith('METADATA'):
                             continue
-    
+
                         yield parse_metadata(
                             location=metapath,
                             datasource_id=cls.datasource_id,
@@ -945,6 +945,7 @@ def get_requirements_txt_dependencies(location, include_nested=False):
 
         purl = purl and purl.to_string() or None
 
+        req.hash_options = []
         requirement = req.dumps()
 
         if location.endswith(

tests/data/hash-requirements.txt

@@ -0,0 +1,7 @@
+addict==2.4.0 \
+    --hash=sha256:249bb56bbfd3cdc2a004ea0ff4c2b6ddc84d53bc2194761636eb314d5cfa5dfc \
+    --hash=sha256:b3b2210e0e067a281f5646c8c5db92e99b7231ea8b0eb5f74dbdf9e259d4e494
+
+requests==2.25.1 \
+    --hash=sha256:c210084e36a42ae6b9219e00e48287def368a26d03a048ddad7bfee44f75871e \
+    --hash=sha256:27973dd4a904a4f13b263a19c866c13b92a39ed1c964655f025f3f8d3d75b804