Match Python advisories found in multiple subdirs
What does this MR do?
It's possible that GLAD might accept a Python advisory that doesn't follow a normalized name. Previously, this caused the analyzer to error out early because it could introduce duplicate vulnerabilities in the final security report. While possible, it's not certain that this duplication will happen, so we now search all returned directories and deduplicate the entries. This ensures that we handle both corner cases.
What are the relevant issue numbers?
Relates to gitlab-org/gitlab#33341 (closed)
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer