Minor improvement in I-SB-1-A Description

[aganariman]

https://owaspsamm.org/model/implementation/secure-build/stream-a/

Last sentence of the 4th paragraph in this activity is not clear:
"Determine a value for each generated artifact that can be later used to verify its integrity, such as a signature or a hash. Protect this value and, if the artifact is signed, the private signing certificate."

I propose to improve it like this:
"Determine a value for each generated artifact that can be later used to verify its integrity, such as a signature or a hash. Ensure this value is securely protected. If the artifact is signed, also safeguard the private signing certificate."

[maximbaele]

Should we explicitly mention "hash" instead of the vague "value"?

[dkefer]

@aganariman : As your proposal includes multiple changes, can you pls develop where the lack of clarity in the original wording comes from for you?