fix: Fixes issue where a license expression wasn't being utilized

[djschleen]

• fix: STDOUT provider will now print scanned file information and license information if there are no vulnerabilities detected.
• fix: CycloneDX license extraction now looks for expression first and uses it, and if it is set to "" it will use the license node if it isn't nil.

I'm going to open a ticket to create some schema validation to ensure that any file ingested by bomber has all the fields bomber needs to process the file.

[djschleen]

closes #106

[codecov]

Codecov Report

Base: 86.94% // Head: 87.55% // Increases project coverage by +0.60% 🎉

Coverage data is based on head (4dcfe83) compared to base (9ee85bb).
Patch coverage: 90.69% of modified lines in pull request are covered.

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #108      +/-   ##
==========================================
+ Coverage   86.94%   87.55%   +0.60%     
==========================================
  Files          17       17              
  Lines         743      747       +4     
==========================================
+ Hits          646      654       +8     
+ Misses         65       63       -2     
+ Partials       32       30       -2     

Impacted Files	Coverage Δ
renderers/stdout/stdout.go	82.14% <88.23%> (+2.14%)	⬆️
formats/cyclonedx/cyclonedx.go	100.00% <100.00%> (ø)
lib/bomloader.go	85.71% <100.00%> (+3.10%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[zroll]

CodeCov agrees with you too.

[djschleen]

Force approved... need to get CODEOWNERS in this repo for The Incredibles.