Potential fix for code scanning alert no. 156: SQL query built from user-controlled sources (#709)

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: bkaiserinfosec

src/vr/vulns/web/metrics.py

@@ -37,7 +37,7 @@ def component_metrics(id):
         schema = VulnerabilitiesSchema(many=True)
         assets = schema.dump(vuln_all)
         NAV['appbar'] = 'metrics'
-        app = BusinessApplications.query.filter(text(f'ID={id}')).first()
+        app = BusinessApplications.query.filter(text('ID = :id').params(id=id)).first()
         app_data = {'ID': id, 'ApplicationName': app.ApplicationName, 'Component': app.ApplicationAcronym}
         findings_map = {}
         reviewed_findings = parse_vuln_findings(vuln_all, 'reviewed')