USER PROBLEM
^{What is the user experiencing as a result of the bug? Include steps to reproduce.}

• I've noticed that the generated vulnerability reports include false positives and deferred CVEs, but there's currently no clear indication of their status within the report. Would it be possible to add an additional column to explicitly show the current state of each CVE (e.g., Observed, Deferred, or False Positive)? This addition would greatly help in understanding and interpreting the report, as the lack of classification currently causes some confusion.

CONDITIONS
^{What conditions need to exist for a user to be affected? Is it everyone? Is it only those with a specific integration? Is it specific to someone with particular database content? etc.}

• Constant.

ROOT CAUSE
^{What is the root cause of the bug?}

• pending

FIX
^{How was the bug fixed (this is more important if a workaround was implemented rather than an actual fix)?}

• pending