Document TEA usage for Open Source projects

[oej]

We have so far focused a lot on "manufacturers" but Open Source projects can be more open, have SBOMs in an open file store and still need discovery and automatic distribution

[oej]

A question I got was if the SBOM files and artefacts can be stored on a regular file system (like a web server) anywhere.

[oej]

We need to investigate various packaging systems and find out their position on distribution of SBOMs