Description

Currently various subcomponents have different ways to initialize them for a specific sigstore instance: I think now is a good time to simplify that and just always provide a TrustConfig to those subcomponents

This still requires a bit of special casing (since production does not yet have the SigningConfig part of TrustConfig) but we can handle that in a single place

I'm looking at how much work this is right now: I assume I will have a PR soon