Detect and mark unknown components with no security data available
Problem to solve
Dependency Scanning is able to spot vulnerabilities for external components that are used by the app.
If the dependency has a vulnerability, it is shown, otherwise nothing is displayed.
At the moment, it is impossible to distinguish if a dependency has no vulnerabilities or if we don't have any source of information to know that.
We should split these two different cases.
Proposal
Show differently if we have a source of vulnerabilities for a given dependency, and there is no known vulnerability, or if we don't have any source at all, so the security status is unknown.