Show vendor info, vulnerability category, and offending package/library/file in vulnerability information

We would like to be able to sort and report vulnerabilities based on the vendor information (Microsoft, Adobe, JAVA, etc).

We would like to be able to sort and report vulnerabilities based on the vulnerability resolution category (Windows update, Application update, Configuration update, etc)

We would like the vulnerability information to reference the offending package/library/file/etc where the vulnerability is being reported from so we can effectively track down that artifact across systems.