Readd CVE scanner integration tests #311
Description
when #279 lands it probably wont include the integration tests that envoy.dependency.check currently has for the cve scanner as lib does not have a runner
these tests, altho useful are prone to breaking as they test the checker output which tends to unrelatedly change
now that the cve scanner is in its own package we can probably add better integration tests (based on the originals) but it will take some time