script: add script to generate reproducible yearly feeds

[yann-morin-1998]

As discussed in #1, here's a litle script that can generate the yearly feeds, in case it can help in any way.

Having the script in the same repo as the CVE files themselves, guarantees (to some extent, of course) that the script will be kept up to date with any format change in the CVE files. Also, there is no question about what the version of the script to use is, for each commit in the repo: the script is there, so that is what to use.

[rhelmke]

Hey @yann-morin-1998! Thank you very much for your contribution :smile:. @maringuu created a pip package which is currently waiting for my review. Unfortunately, it is going to take at least one more week. But we'll let you know when there's an update on this matter 🕐.

[martinclauss]

@rhelmke We should think about creating a new repository for scripts/tooling :)

[maringuu]

Currently, the package lives at ~https://github.com/maringuu/fkie-cve-make-release.~ (Moved to https://github.com/fkie-cad/nvd-release-builder) As of today the releases are identical to the releases in this repo.

@yann-morin-1998 Thanks again for you work! We'd appreciate your feedback on the above repository.

Keeping this open for further discussion.

[maringuu]

Closing as the script is now part of the fkie-cad namespace: fkie-cad/nvd-release-builder. Feel free to open issues for any discussion.