Addressing IllegalStateException in OssArtifactSecurityScore

src/main/java/com/sap/oss/phosphor/fosstars/model/score/oss/OssArtifactSecurityScore.java

@@ -88,7 +88,9 @@ public ScoreValue calculate(Value<?>... values) {
     }
 
     final double updatedScore;
-    if (artifactVersionSecurityScore.get() >= 9.0) {
+    if (projectSecurityScore.isUnknown()) {
+      updatedScore = artifactVersionSecurityScore.get();
+    } else if (artifactVersionSecurityScore.get() >= 9.0) {
       updatedScore = 0.11 * artifactVersionSecurityScore.get() * projectSecurityScore.get();
     } else {
       updatedScore = 0.1 * (0.9 + artifactVersionSecurityScore.get()) * projectSecurityScore.get();

src/test/java/com/sap/oss/phosphor/fosstars/model/score/oss/OssArtifactSecurityScoreTest.java

@@ -52,6 +52,21 @@ public void testCalculateForAllUnknown() {
     ScoreValue scoreValue = score.calculate(Utils.allUnknown(score.allFeatures()));
     assertTrue(scoreValue.isUnknown());
   }
+
+  @Test
+  public void testCalculateOssSecurityScoreUnknown() {
+    Score ossSecurityScore = new OssSecurityScore();
+    Set<Value<?>> values = Utils.allUnknown(ossSecurityScore.allFeatures());
+
+    OssArtifactSecurityScore ossArtifactSecurityScore = new OssArtifactSecurityScore();
+    values.add(RELEASED_ARTIFACT_VERSIONS.value(testArtifactVersions(false)));
+    values.add(ARTIFACT_VERSION.value(new ArtifactVersion("1.2.0", LocalDateTime.now())));
+    values.add(VULNERABILITIES_IN_ARTIFACT.value(new Vulnerabilities()));
+
+    ScoreValue scoreValue = ossArtifactSecurityScore.calculate(values);
+    assertTrue(DoubleInterval.closed(7, 8).contains(scoreValue.get()));
+    checkUsedValues(scoreValue);
+  }
 
   @Test
   public void testCalculateWithCurrentVersion() {