v3

Sane and stable version to enable easier validation during v4 development

v3 sees a massively increased cove coverage, to increase this further we must refactor the CveDB component into something of a reusable object. Then we can introduce a great many more tests.

Currently v3 supports the following packaging formats:

• RPM, both .spec and src.rpm. For .spec we validate that each patch is applied.
• eopkg, Solus native packaging format
• PKGBUILD, for Arch Linux. Note that due to a lack of patch name standardisation at present, it is very difficult to determine whether a CVE is currently addressed or not.