Esp-idf-sbom

New Features

- add a global list of excluded CVEs
- allow conditional expressions in manifest files
- introduce virtual package support

New Features

- introduce -n/--name option to enable querying NVD by package name

Bug Fixes

- skip unregistered components

New Features

- add esp-idf-sbom manifest license command

Bug Fixes

- remove '+' from set of valid SPDXID characters

New Features

- add support for unified copyright years in license command
- add per package license and copyright report
- add license command
- add declared licenses into project package
- add copyright support to manifest

Bug Fixes

- harden NVD connection error handling