After doing a SBOM orchestration and trivy scan, the portal UI shows the SBOM OSS Risk field, but when downloading the sbom, this field is not available, nor does there seem to be a GET api call for this.