feat: add import/export and third-party integrations

[leoneperdigao]

Description

Enable interoperability with the broader security tooling ecosystem by supporting import from multiple scanner formats, export to SIEM systems, and integration with vulnerability management platforms. This also includes CBOM (Cryptography Bill of Materials) support for standardized crypto inventory exchange.

Tasks

• Implement import adapters:
  • quantum-safe-guardian JSON format
  • pqcscan output format
  • Generic crypto-scanner CSV format
• Implement export to SIEM systems:
  • Splunk HEC (HTTP Event Collector) integration
  • Elastic/OpenSearch bulk API integration
• Add vulnerability management integrations:
  • Jira: create/update tickets from findings
  • ServiceNow: create incidents from critical findings
• Implement CycloneDX CBOM (Cryptography Bill of Materials):
  • Import CBOM documents
  • Export crypto inventory as CBOM
• Add GitHub Security Advisory integration:
  • Check findings against known CVEs
  • Create security advisories for critical findings
• Build integration configuration UI (API keys, endpoints, mapping)
• Add integration health monitoring (connection status, last sync)
• Write integration tests with mocked external services

References

• CycloneDX CBOM specification
• Splunk HEC documentation
• Jira REST API