fix: repetitive and incorrect log lines on witness verify #317

[ChaosInTheCRD]

What this PR does / why we need it

some cleanup around https://github.com/in-toto/go-witness/pull/317.

• It seemed as though we might be adding the memory source even if we don't specify an attestation-file-path so I have cleaned it up a bit.
• improved the general logging after verify.

testing instructions for @Xopek from https://github.com/in-toto/go-witness/issues/316:

• clone and checkout this branch and the corresponding go-witness branch
• add a replace line to go.mod in this repository to point to your local go-witness repository:

  
  module github.com/in-toto/witness

go 1.22.0

toolchain go1.22.2

++ replace github.com/in-toto/go-witness => <path/to/local/go-witness>

- run `go mod tidy`
- test with `go run . run` and `go run . verify` in the root of this branch.

[netlify[bot]]

✅ Deploy Preview for witness-project ready!

Name	Link
🔨 Latest commit	d91794bfa49b8d08d2031f2da55435f9e7c4d4af
🔍 Latest deploy log	https://app.netlify.com/sites/witness-project/deploys/66abb31fb9ca7a0008db8ca8
😎 Deploy Preview	https://deploy-preview-485--witness-project.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[Xopek]

Can confirm, that this fixed issue https://github.com/in-toto/go-witness/issues/316.

However for some reason in order for "verify" command to work, i had to regenerate attestations, without it verify failed with error:

ERROR   Verification failed
ERROR   Evidence:
ERROR   Step: build
ERROR   verification failure: no collections found
ERROR   failed to verify policy: policy verification failed