Use FOSSA for SBOM generation

[sjberman]

Syft does not generate a full SBOM report with all transitive dependencies. FOSSA does, so we now use a custom script to generate the SBOM from a FOSSA report and upload to Azure when we release.

• [x] I have read the CONTRIBUTING doc
• [ ] I have added tests that prove my fix is effective or that my feature works
• [ ] I have checked that all unit tests pass after adding my changes
• [ ] I have updated necessary documentation
• [x] I have rebased my branch onto main
• [x] I will ensure my PR is targeting the main branch and pulling from my branch from my own fork