fcli fod release add subcommand for retrieving OSS components

[kadraman]

Enhancement Request

Now that the API endpoint GET /api/v3/applications/open-source-components now supports filtering by release we can add some useful commands for querying on OSS components. For example:

fcli fod release list-oss --release ...
fcli fod action run oss-components ...
fcli fod action run oss-license-check

The later could include filtering on vulnerable components, licenses used etc and maybe even failing build which is what customers have been asking for ... and have had to use full Debricked solution to do so.

There is still no support for filtering on Applications but we could "find" all releases for an application if necessary.

[kadraman]

I have added fcli fod action run oss-component-report into PR 657. With this action I don't think there would be need for a separate fcli fod release list-oss command?

[rsenden]

The only reason that I can think of for having a dedicated fcli command is that this would automatically support various output formats like JSON or CSV. Not sure through whether I like having this under fcli fod release, might fit better under fcli fod oss-scan or some other entity?

Anyway, for now I guess we can close this issue based on the new report action (once merged); we can re-open or users can submit a new issue if there's a need for a dedicated fcli command. By then, maybe we'll have better output format support for fcli actions anyway.