Add SBOM, symbols, traces, and VEX files for CVE-2022-21661 SQLi case

- Created CycloneDX and SPDX SBOM files for both reachable and unreachable images.
- Added symbols.json detailing function entry and sink points in the WordPress code.
- Included runtime traces for function calls in both reachable and unreachable scenarios.
- Developed OpenVEX files indicating vulnerability status and justification for both cases.
- Updated README for evaluator harness to guide integration with scanner output.

src/Aoc/__Libraries/StellaOps.Aoc/AocGuardOptions.cs

@@ -24,7 +24,9 @@ public sealed record AocGuardOptions
             "createdAt",
             "created_at",
             "ingestedAt",
-            "ingested_at"
+            "ingested_at",
+            "links",
+            "advisory_key"
         }, StringComparer.OrdinalIgnoreCase)
         .ToImmutableHashSet(StringComparer.OrdinalIgnoreCase);