Script that screens for SOUP vulnerabilities

The SOP 3.11 "SOUP Surveillance" requires us to screen our third-party dependencies for vulnerabilities:

"The second component of the SOUP surveillance is an automated screening for vulnerabilities in any SOUP package used in the products. For this, the manufacturer writes a program that continuously checks available online repositories for reports on security vulnerabilities based on the SOUP list created in step 2.1. If a vulnerability is reported, the CTO is automatically informed about it and can initiate appropriate actions."