prevent early return in verifier

[joshdabosh]

What this PR does / why we need it

During verification there is nondeterministic behavior if the flag --verifier-kms-aws-remote-verify=[true/false] is not specified. I found that this is because there is an early return causing the default boolean true value to not be set for the verifyRemotely attribute.

In some instances, the first ksp in the outer loop will be kms-gcp. If using an AWS reference, then the proper verifyRemotely setter will not be run. Other times, the first ksp will be kms-aws and the proper setter will be called.

You can check this by running witness verify --verifier-kms-ref [KMS_REF] -a [ATTESTATION] -f [ARTIFACT] -p policy.signed.json using an AWS IAM account without the Verify permission. It will succeed sometimes and fail other times.

Which issue(s) this PR fixes (optional)

Acceptance Criteria Met

• Docs changes if needed
• Testing changes if needed
• All workflow checks passing (automatically enforced)
• All review conversations resolved (automatically enforced)
• DCO Sign-off

Special notes for your reviewer:

[netlify]

✅ Deploy Preview for witness-project ready!

Name	Link
🔨 Latest commit	f653094
🔍 Latest deploy log	https://app.netlify.com/sites/witness-project/deploys/66b96cefed56560008750311
😎 Deploy Preview	https://deploy-preview-484--witness-project.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.