Add Notary Project to Supply Chain Security Tools

[FeynmanZhou]

trafficstars

Hi TAG Security leads,

Notary Project is a standard-based project to sign and verify artifacts. Safeguarding the software delivery security from development to deployment. It is a CNCF Incubating Project. Notary Project could play a criticle role to ensure integrity and authentity in multiple stages defined in https://tag-security.cncf.io/community/publications/supply-chain-security-tools/

I am a maintainer of Notary Project. I would like to add Notary Project to relevant stages in this Supply Chain Security Tools Mappings chapter. I will send a PR to update the docs if no concenrs from the TAG leads. Thanks.