Add first version of evaluator

Summary

Evaluator is based on symmetric difference operator of two reports: baseline and generated. It identifies a vulnerability by {cwe, filename, start_line, end_line}.

Resolving CWE

Currently CWE is resolvod iff it is contained in identifiers of vulnerability. In cases where cwe identifier is not there, the vulnerability is skipped.