bomber should validate that mandatory fields exist on BOM load

[djschleen]

When bomber loads an SBOM, it should verify that all of the required fields (purl is really the only one) exist in the file.

If a package is listed without a purl, bomber should output a message saying that "x" (identifier of some sort (or line number)) does not contain a valid purl, or a purl is missing.