At some point, cdxgen has stopped generating precise sbom for container images with distro and distro_name qualifiers. This had broken the functionality for container image search for many distros including ubuntu. This PR relaxes by supporting vendor less searches. At the same time, cdxgen is getting fixed to add distro and distro_name qualifiers by parsing os-release info.
At some point, cdxgen has stopped generating precise sbom for container images with distro and distro_name qualifiers. This had broken the functionality for container image search for many distros including ubuntu. This PR relaxes by supporting vendor less searches. At the same time, cdxgen is getting fixed to add distro and distro_name qualifiers by parsing os-release info.