feat: blob inspect command

[JeyJeyGao]

Feat:

• added notation blob inspect command

Refactor:

• added Signature struct to share between OCI inspect and blob inspect commands
• added ioutil.Time and ioutil.Timestamp wrapper types for formatting time when print text and marshal JSON

Test:

• added E2E and unit test

Output example:

/home/jj/download/LICENSE.jws.sig
├── signature algorithm: RSASSA-PSS-SHA-256
├── signature envelope type: application/jose+json
├── signed attributes
│   ├── signingScheme: notary.x509
│   └── signingTime: Tue Dec 31 08:05:29 2024
├── user defined attributes
│   └── (empty)
├── unsigned attributes
│   ├── signingAgent: notation-go/1.3.0+unreleased
│   └── timestamp signature
│       ├── timestamp: [Tue Dec 31 08:05:29 2024, Tue Dec 31 08:05:30 2024]
│       └── certificates
│           ├── SHA256 fingerprint: 36e731cfa9bfd69dafb643809f6dec500902f7197daeaad86ea0159a2268a2b8
│           │   ├── issued to: CN=Microsoft Public RSA Timestamping CA 2020,O=Microsoft Corporation,C=US
│           │   ├── issued by: CN=Microsoft Identity Verification Root Certificate Authority 2020,O=Microsoft Corporation,C=US
│           │   └── expiry: Mon Nov 19 20:42:31 2035
│           └── SHA256 fingerprint: 93db2732c49e2624cf0a5cc03ad04acc0927fcaf5e7afdd4a3e23b6fc196aedc
│               ├── issued to: CN=Microsoft Public RSA Time Stamping Authority,OU=Microsoft America Operations+OU=nShield TSS ESN:7800-05E0-D947,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US
│               ├── issued by: CN=Microsoft Public RSA Timestamping CA 2020,O=Microsoft Corporation,C=US
│               └── expiry: Sat Feb 15 20:36:12 2025
├── certificates
│   └── SHA256 fingerprint: dadee19c843e94b94daae9854d0de7ad93642b6075e2d1523b860b1770b64a03
│       ├── issued to: CN=testcert2,O=Notary,L=Seattle,ST=WA,C=US
│       ├── issued by: CN=testcert2,O=Notary,L=Seattle,ST=WA,C=US
│       └── expiry: Wed Jan  1 08:04:39 2025
└── signed artifact
    ├── media type: application/octet-stream
    ├── digest: sha256:c71d239df91726fc519c6eb72d318ec65820627232b2f796219e87dcf35d0ab4
    └── size: 11357

[codecov]

Codecov Report

Attention: Patch coverage is 92.95775% with 15 lines in your changes missing coverage. Please review.

Project coverage is 73.97%. Comparing base (cd933da) to head (5e8d773).

Files with missing lines	Patch %	Lines
internal/envelope/signature.go	89.85%	10 Missing and 4 partials ⚠️
cmd/notation/inspect.go	80.00%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1133      +/-   ##
==========================================
+ Coverage   72.38%   73.97%   +1.58%     
==========================================
  Files          50       53       +3     
  Lines        3125     3181      +56     
==========================================
+ Hits         2262     2353      +91     
+ Misses        670      639      -31     
+ Partials      193      189       -4     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[Two-Hearts]

This PR should be reviewed and merged after PR: #1128

[JeyJeyGao]

This PR should be reviewed and merged after PR: #1128

Unblocked now.

[shizhMSFT]

Let's discuss offline for the design first.

I'd like to refactor notation and adopt the same rendering model as oras.

[shizhMSFT]

Suggested change

	return parent.Add(fmt.Sprintf("%s: %s", key, value))
	return parent.Add(fmt.Sprintf("%s: %v", key, value))

[shizhMSFT]

Suggested change

	fmt.Printf("%s%s%s\n", prefix, itemMarker, n.Value)
	fmt.Printf("%s%s%v\n", prefix, itemMarker, n.Value)

[shizhMSFT]

Suggested change

	notation inspect blob.cose.sig
	notation blob inspect blob.cose.sig