add sandworm.dev integration

[jossef]

Sandworm is a new tool for developers to check npm packages.
They are generating a report with list of issues:

Even though the webapp looks like it was statically generated, they may have an API to generate json
see https://docs.sandworm.dev/#json-output (or their CLI source code to see how it fetches the data: https://github.com/sandworm-hq/sandworm-audit)

To display it in the UI you will need their logo, please put here a link to download the logo, so @jossef will convert it to the right size.

[baruchiro]

DoD: Add to the README

[itay-goldraich]

I have not found any API for https://blog.sandworm.dev/.

[baruchiro]

I understand.

Can you explain and give us examples of which data we can retrieve from there?
For example, all the packages I tested were always with "0 issues". Have you seen a package with issues?

Also, I see there is no API, but there is a mechanism of fetching a webpage, and then fetching it again with updated version, we will need to understand how to implement it.