Zabbix

..F....... [ZBX-23066] added more project descriptors

This adds more attributes into the composer.json object to identify the
product more clearly, specifically giving it a name, a terse
description, homepage URL and license identifier. I've added these
to conform with Composer's schema and to make SBOMs generated from this
consistent.

Notably, a version identifier is missing. This should be determined from
the version control tags, i.e. `git describe --tags --abbrev=0`,
and updated in this document.

Composer's documentation states the following regarding the version
attribute:

  Optional if the package repository can infer the version from
  somewhere, such as the VCS tag name in the VCS repository. In that
  case it is also recommended to omit it.[1]

When testing SBOM generation, without specifying the version in the
project description, nor explicitly specifying the main component
version, Composer figures that the project has 'dev' stability and is of
the 'master' version. When specifying the version via the project
description object (the composer.json file), the component version is
interpreted correctly and the BOM reference version portion expands to
'ui-7.0.0.0-alpha2', while the PURL version anchor remains verbatim the
provided version number.

[1]: https://getcomposer.org/doc/04-schema.md#version