feat: Documentation and plugin system for parsers

[pdxjohnny]

• This pull request brings entrypoint style plugins to Parsers in the same way that checkers have long had. This enables out of tree Parsers for custom CVE finding tooling.
• PDF of new docs page: Adding a new parser to cve-bin-tool — CVE Binary Tool 3.3.1dev0 documentation.pdf

• TODO
  • [x] Rebase in https://github.com/intel/cve-bin-tool/commit/c7947653bd80cacca8486c56036a3840586dfa09 to resolve PURL issues

[pdxjohnny]

@terriko This is ready for review when you have time. Thank you in advance :)

[terriko]

Was there a specific motivation for this?

I ask because our current plugin system is the thing blocking us from moving to pyproject.toml from setup.py. And honestly, that's not a thing we need but it would make a bunch of our config go into that file so we don't have to have quite as many separate configs for our linters. So I'd been wondering if we should refactor away from those plugins next time we do a big refactor. Do you know of anyone supporting out of tree stuff that this would affect?

I love refactoring the parsers to be more atomic in that they actually know what files they're scanning for, and I love the better documentation. But I"m wondering if we should rethink the plugins now before we add more of them, I guess?

[terriko]

Adding: Got some more info on the use case from @pdxjohnny and I agree that this is probably the best solution. I'll be back to do a more nitpicky code review later.

[pdxjohnny]

I will start on un-entrypoint-zing in-tree checkers so we can move to pyproject.toml as a seperate PR, then we can have it load entrypoints from out-of-tree plugins in addition to in-tree stuff.

[pdxjohnny]

Woohoo thank you!!!