fix(sbom): take pkg name from `purl` for maven pkgs

[DmitriyLewen]

Description

See #7007

example:

pom.xml:

<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
    <modelVersion>4.0.0</modelVersion>

    <groupId>example.groupId</groupId>
    <artifactId>example-artifactId</artifactId>
    <version>1.0.0</version>

    <name>example-name</name>
    <description>Example</description>
</project>

before:

➜  trivy -q sbom example.groupId_example-artifactId-1.0.0.spdx.json -f json --list-all-pkgs
{
  ...
  "Results": [
    {
      "Target": "Java",
      "Class": "lang-pkgs",
      "Type": "jar",
      "Packages": [
        {
          "ID": "example-name:1.0.0",
          "Name": "example-name",
          "Identifier": {
            "PURL": "pkg:maven/example.groupId/example-artifactId@1.0.0",
            "UID": "2c55c2ad0ab0ebf"
          },
          "Version": "1.0.0",
          "Licenses": [
            "NOASSERTION"
          ],
          "Layer": {}
        }
      ]
    }
  ]
}

after

➜  ./trivy -q sbom example.groupId_example-artifactId-1.0.0.spdx.json -f json --list-all-pkgs
{
  ...
  "Results": [
    {
      "Target": "Java",
      "Class": "lang-pkgs",
      "Type": "jar",
      "Packages": [
        {
          "ID": "example.groupId:example-artifactId:1.0.0",
          "Name": "example.groupId:example-artifactId",
          "Identifier": {
            "PURL": "pkg:maven/example.groupId/example-artifactId@1.0.0",
            "UID": "602ee3f42c8bc4ec"
          },
          "Version": "1.0.0",
          "Licenses": [
            "NOASSERTION"
          ],
          "Layer": {}
        }
      ]
    }
  ]
}

Related issues

• Close #7007

Checklist

• [x] I've read the guidelines for contributing to this repository.
• [x] I've followed the conventions in the PR title.
• [ ] I've added tests that prove my fix is effective or that my feature works.
• [ ] I've updated the documentation with the relevant information (if needed).
• [ ] I've added usage information (if the PR introduces new options)
• [ ] I've included a "before" and "after" example to the description (if the PR is a user interface change).