SHA512 hash format of the components #950
Description
Analyzing the following tool [https://github.com/CycloneDX/cyclonedx-dotnet], I notice that it uses the old hash format generated by NuGet. I wonder if it would be better to use the new hash format of NuGet (which is also present in the lockfile "packages.lock.json") or if it would have a way to at least represent the used hash format (there doesn't seem to be an easy way at first glance to represent this). Information about the two hash formats that exist: https://github.com/NuGet/Home/wiki/Nupkg-Metadata-File