fix: add component name to sbom

| --------------------- | -------------------------------------- | ----------------- |

| `PYTHON_SBOM_DISABLED` | Set to `true` to disable this job | _none_ |

| `PYTHON_SBOM_SYFT_URL` | Url to the `tar.gz` package for `linux_amd64` of Syft to use (ex: `https://github.com/anchore/syft/releases/download/v0.62.3/syft_0.62.3_linux_amd64.tar.gz`)<br/>_When unset, the latest version will be used_ | _none_ |

| `PYTHON_SBOM_NAME` | Component name of the emitted SBOM | `$CI_PROJECT_PATH/$PYTHON_PROJECT_DIR` |

| `PYTHON_SBOM_OPTS` | Options for syft used for SBOM analysis | `--catalogers python-index-cataloger` |

In addition to logs in the console, this job produces the following reports, kept for one week:

          "description": "Url to the `tar.gz` package for `linux_amd64` of Syft to use\n\n_When unset, the latest version will be used_",

          "advanced": true

        },

        {

          "name": "PYTHON_SBOM_NAME",

          "description": "Component name of the emitted SBOM",

          "default": "$CI_PROJECT_PATH/$PYTHON_PROJECT_DIR",

          "advanced": true

        },

        {

          "name": "PYTHON_SBOM_OPTS",

          "description": "Options for syft used for SBOM analysis",

  PYTHON_TRIVY_IMAGE: "registry.hub.docker.com/aquasec/trivy:latest"

  PYTHON_TRIVY_ARGS: "--vuln-type library"

  PYTHON_SBOM_NAME: "$CI_PROJECT_PATH/$PYTHON_PROJECT_DIR"

  PYTHON_SBOM_OPTS: "--catalogers python-index-cataloger"

  PYTHON_RELEASE_NEXT: "minor"

        mkdir -p $PIP_CACHE_DIR

        mv ./syft $python_sbom_syft

      fi

    - $python_sbom_syft dir:. $PYTHON_SBOM_OPTS -o cyclonedx-json > reports/py-sbom.cyclonedx.json

    - $python_sbom_syft dir:. --source-name $PYTHON_SBOM_NAME $PYTHON_SBOM_OPTS -o cyclonedx-json > reports/py-sbom.cyclonedx.json

    - chmod a+r reports/py-sbom.cyclonedx.json

  artifacts:

    name: "Python SBOM from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG"