Run deep sbom instead of research one

Signed-off-by: Prabhu Subramanian <prabhu@appthreat.com>

Author: prabhu

.github/workflows/pythonpublish.yml

@@ -48,7 +48,9 @@ jobs:
       - name: Generate SBOM with cdxgen
         run: |
           npm install -g @cyclonedx/cdxgen
-          cdxgen -t python -o bom.json . --profile research
+          cdxgen -t python -o bom.json . --deep
+        env:
+          FETCH_LICENSE: true
       - name: Create Release
         id: create_release
         if: startsWith(github.ref, 'refs/tags/')

INTEGRATION.md

@@ -94,7 +94,7 @@ Refer to the vers [documentation](https://github.com/package-url/purl-spec/blob/
 Search the `cve_index` table in the index database first to retrieve any matching cve_id and purl_prefix values. Use these two column values to retrieve the full CVE source information from the `cve_data` table. An example query is shown below:
 
 ```sql
-SELECT DISTINCT cve_id, type, namespace, name, source_data_hash, json(source_data), json(override_data), vers, purl_prefix FROM cve_data
+SELECT DISTINCT cve_id, type, namespace, name, source_data_hash, json(source_data), vers, purl_prefix FROM cve_data
     WHERE cve_id = ? AND vers = ? AND purl_prefix = ?
     GROUP BY purl_prefix
     ORDER BY cve_id DESC;