Proposal: Extend the schema to include OSINT information

We can improve the the analyzer/database if we can extend the schema to add open-source or internally- discovered information like proofs of concepts, known exploits, other useful (to the community and the customer) information.

This issue captures the discussion on what would be nice to have, what sources to use, how to extend the schema, etc.

/cc @gitlab-org/vulnerability-research @gitlab-org/secure/composition-analysis-be @tmccaslin @sam.white @david @NicoleSchwartz @tstadelhofer