fix(ci): sign OCI artifacts with both OCI 1.1 and legacy formats

[c2ndev]

What type of PR is this?

Uncomment one (or more) /kind <> lines:

/kind bug

/kind cleanup

/kind design

/kind documentation

/kind failing-test

/kind feature

Any specific area of the project related to this PR?

Uncomment one (or more) /area <> lines:

/area plugins

/area registry

/area build

/area documentation

What this PR does / why we need it:

After PR #1033 upgraded cosign-installer from v3 to v4, cosign v3 is now used which defaults to OCI 1.1 referrers format for signatures. This PR adds an additional signing step with --registry-referrers-mode=legacy to also produce signatures in the legacy tag-based format (sha256-<digest>.sig).

This ensures backward compatibility for consumers using older cosign versions or tools that expect the legacy signature format

Which issue(s) this PR fixes:

Fixes #

Special notes for your reviewer:

[poiana]

Welcome @c2ndev! It looks like this is your first PR to falcosecurity/plugins 🎉

[poiana]

LGTM label has been added.

Details

Git tree hash: 4cabce56abca3762c1da1534dc7dd169267a02bf

[poiana]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: c2ndev, leogr

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [leogr]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[leogr]

/approve
/lgtm