CVE manipulation frontend for cli

[rjsmith1999]

General features:

• find known cve's in a public database
• extract versions from cmake sbom
• compare versions with cve's and provide that info to EBOSS triage and remediation pipeline

TODO:

• check for any existing libraries or tools we can leverage or integrate with

[rjsmith1999]

Looks like: https://github.com/ossf/cve-bin-tool may be what we need?