feat: add support outputting rekor response on signing

[vishal-chdhry]

Summary

Closes: #3110

Previously, there's no support for outputting a bundle with cosign sign (code), only sign-blob (code). This PR adds support for outputting rekor response on signing. This supports use-cases where a signer does not want to attach metadata immediately to the container.

Release Note

Added support outputting rekor response on signing with cosign sign

Documentation

[codecov]

Codecov Report

Merging #3248 (2f5402b) into main (44f7703) will increase coverage by 0.47%.
Report is 45 commits behind head on main.
The diff coverage is 0.00%.

@@            Coverage Diff             @@
##             main    #3248      +/-   ##
==========================================
+ Coverage   30.35%   30.82%   +0.47%     
==========================================
  Files         155      155              
  Lines        9845     9967     +122     
==========================================
+ Hits         2988     3072      +84     
- Misses       6410     6442      +32     
- Partials      447      453       +6     

Files	Coverage Δ
cmd/cosign/cli/sign/sign.go	13.07% <0.00%> (-1.18%)	⬇️

... and 11 files with indirect coverage changes

[haydentherapper]

Can you add a test for this too?

[vishal-chdhry]

@haydentherapper I have added a test and updated the logic, can you please review it

Besides, I cannot run/debug tests in test/e2e_test.go. I think gopls is not working for me in that file, autocomplete does not work either. Is there anything I need to configure? I am using VSCode.

[haydentherapper]

One tiny comment, looks good!

[haydentherapper]

Can you remove, the experimental flag is no longer used?

[vishal-chdhry]

@haydentherapper Removed the flag