group (or filter) vulnerabilities by project/folder/manifest

[breadchris]

The first party code has been collected, and now based on the paths of the callsites, group vulnerabilities together.

"Group by manifest"

[freeqaz]

Maybe make a new task to capture the CVSS modifier logic too