Thanks to @malancas for highlighting issue ordering of RPM signing and attestations!  Now, all artifacts should have attestations appropriately generated

Ensure signed RPMs have attestations

…fy` (#9137)

* add signer-repo and signer-workflow flags

Signed-off-by: Meredith Lancaster <[email protected]>

* add check for SignerRepo option

Signed-off-by: Meredith Lancaster <[email protected]>

* add helper function and comment for clarity

Signed-off-by: Meredith Lancaster <[email protected]>

* update flag comment

Signed-off-by: Meredith Lancaster <[email protected]>

* reference correct field

Signed-off-by: Meredith Lancaster <[email protected]>

* move function to more relevant file

Signed-off-by: Meredith Lancaster <[email protected]>

* Update pkg/cmd/attestation/verify/verify.go

Co-authored-by: Zach Steindler <[email protected]>

* Update pkg/cmd/attestation/verify/verify.go

Co-authored-by: Zach Steindler <[email protected]>

* make all reusable workflow flags mutually exclusive

Signed-off-by: Meredith Lancaster <[email protected]>

* accept signer workflow without host

Signed-off-by: Meredith Lancaster <[email protected]>

* support client optionally providing host with signer workflow flag

Signed-off-by: Meredith Lancaster <[email protected]>

* comment

Signed-off-by: Meredith Lancaster <[email protected]>

* add tests for parsing signer workflow

Signed-off-by: Meredith Lancaster <[email protected]>

---------

Signed-off-by: Meredith Lancaster <[email protected]>
Co-authored-by: Zach Steindler <[email protected]>

Docs: Specify rpm repository to avoid conflicts with community repositories

Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 1.1.2 to 1.2.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](actions/attest-build-provenance@173725a...49df96e)

---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

…t docstring.

Replace `--json-result` flag with `--format=json` in the attestation cmd

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 5 to 6.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@v5...v6)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

Bump go-keyring to fix keepassxc prompt confirmation

…ttest-build-provenance-1.2.0

build(deps): bump actions/attest-build-provenance from 1.1.2 to 1.2.0

Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/gorilla/websocket/releases)
- [Commits](gorilla/websocket@v1.5.1...v1.5.2)

---
updated-dependencies:
- dependency-name: github.com/gorilla/websocket
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.34.1 to 1.34.2.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

…r/goreleaser-action-6

build(deps): bump goreleaser/goreleaser-action from 5 to 6

…rilla/websocket-1.5.2

build(deps): bump github.com/gorilla/websocket from 1.5.1 to 1.5.2

….org/protobuf-1.34.2

build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2

Co-authored-by: William Martin <[email protected]>