1. Proposed title of this feature request

Integration of RHACS with Additional CVE Sources for Broader Vulnerability Detection

2. What is the nature and description of the request?

This feature request proposes the integration of RHACS with additional CVE sources. Currently, ACS does not detect vulnerabilities for components across a wide range of languages and ecosystems (such as PHP, NuGet, etc.). The goal of this enhancement is to expand the scope of vulnerability detection to include publicly available CVEs from multiple sources, ensuring RHACS identifies vulnerabilities for a broader set of components, reducing security risks.

3. Why does the customer need this? (List the business requirements here)

Comprehensive Vulnerability Detection: Customers require the ability to identify vulnerabilities across different programming languages and package managers (e.g., PHP, NuGet, etc.)

Reduced Risk Exposure: Without integration with additional CVE sources, known vulnerabilities in popular components are not detected, leaving applications vulnerable to potential exploits.

Slack discussing link : https://redhat-internal.slack.com/archives/C028JE84N59/p1741889242719629