Add OWASP vector to enrich command output #61
Description
Hello,
Currently, vens enrich only adds the OWASP score to the report but not the vector string that explains how that score was calculated.
Current output:
json "Custom": { "owasp_score": 52.0 }
Expected output:
json "Custom": { "owasp_score": 52.0, "owasp_vector": "SL:7/M:7/O:7/S:7/ED:6/EE:6/A:6/ID:3/LC:7/LI:7/LAV:7/LAC:7/FD:7/RD:7/NC:7/PV:7" }
The vector is already present in the VEX file generated by vens generate, we just need to extract it during enrichment.
Hint: Look at pkg/vexenricher/enricher.go - you'll need to store and apply the vector similar to how the score is handled.