Suhail

@gotlougit you need to run `LONG_TESTS=1 pytest -k ` to properly test the checker and to generate the condensed test files. You also need to commit those files too. Also...

now if you run `LONG_TESTS=1 pytest -k apache_http_server` the condensed test files will be produced. edit: you should also change the file name

It seems like the commit messages of some commits don't follow [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/). You might want to squash all the commits into one with proper commit message after the PR...

@peb-peb This is a txt file containing some packages that I found having CVEs in Manjaro. You can use it for creating checkers if you like :D [manjaro_checkers.txt](https://github.com/intel/cve-bin-tool/files/6794689/manjaro_checkers.txt)

Here are some go packages with vulnerabilities that I've found through a quick search - Docker [website](https://docs.docker.com/engine/install/) [CVE](https://www.cvedetails.com/product/31456/?q=Docker) - Kubernetes [website](https://kubernetes.io/docs/tasks/tools/) [CVE](https://www.cvedetails.com/product/33261/?q=Kubernetes) - etcd [website](https://etcd.io/) [CVE](https://www.cvedetails.com/product/45128/?q=Etcd) - GORM [website](https://gorm.io/) [CVE](https://www.cvedetails.com/product/58195/?q=Gorm)

We already had the js files upgraded to v5.2.0 in #1824

> Should we disable these tests in CI? (We can keep and document them for users who want the additional check, but they'd be run at the user's discretion.) Agreed...

> BUG If the distribution is not supported (e.g. Kali, Raspian) the error message is `"Invalid Package list"`. A more descriptive error message may be more appropriate e.g. 'Unsupported Distribution'....

I'm filing some of these issues individually while working on it

@anthonyharrison if I get it right if we have versions in the package list then we don't need to query `dpkg-query` or other package managers right? This is would be...