feat: allow-incomplete-sbom support in legacy CLI paths [CSENG-173]

Author: neema-beglou-snyk

src/lib/plugins/get-deps-from-plugin.ts

@@ -102,12 +102,37 @@ export async function getDepsFromPlugin(
   if (!options.docker && !(options.file || options.packageManager)) {
     throw NoSupportedManifestsFoundError([...root]);
   }
-  const inspectRes = await getSinglePluginResult(
-    root,
-    options,
-    '',
-    featureFlags,
-  );
+  let inspectRes;
+  try {
+    inspectRes = await getSinglePluginResult(
+      root,
+      options,
+      '',
+      featureFlags,
+    );
+  } catch (error) {
+    if (options['print-effective-graph-with-errors']) {
+      const errMessage =
+        error?.message ?? 'Something went wrong getting dependencies';
+      debug(
+        `Single plugin scan failed for ${options.file}, collecting as failed result: ${errMessage}`,
+      );
+      return {
+        plugin: {
+          name: options.packageManager || 'unknown',
+        },
+        scannedProjects: [],
+        failedResults: [
+          {
+            targetFile: options.file,
+            error,
+            errMessage,
+          },
+        ],
+      } as MultiProjectResultCustom;
+    }
+    throw error;
+  }
 
   if (!pluginApi.isMultiResult(inspectRes)) {
     if (!inspectRes.package && !inspectRes.dependencyGraph) {

src/lib/plugins/get-multi-plugin-result.ts

@@ -183,6 +183,18 @@ export async function getMultiPluginResult(
   }
 
   if (!allResults.length) {
+    // When allow-incomplete-sbom is active, return instead of throwing
+    // so the caller can print per-project JSONL error entries
+    if (options['print-effective-graph-with-errors']) {
+      return {
+        plugin: {
+          name: 'custom-auto-detect',
+        },
+        scannedProjects: allResults,
+        failedResults,
+      };
+    }
+
     // No projects were scanned successfully
     let message = `Failed to get dependencies for all ${targetFiles.length} potential projects.\n`;