Refactor: turn helpers into instance methods

[woodruffw]

sigstore_to_pypi and pypi_to_sigstore could be Attestation.from_bundle and Attestation.to_bundle, probaby.

(We might have already dismissed this for some reason, can't remember 😅)