Clarify vendor dependency DR latest guidance
- Clarified information on vendor dependencies
- Removed vendor dependency as a separate DR request type
- Update guidance instructing teams to not submit vendor dependency Risk Adjustments pending automation
If automation does submit Risk Adjustment DRs for current open vendor dependencies, we will need to sort through the backlog of vulnerability issues and ensure we can identify them with the FedRAMP Vendor Dependency
label.