chore(server): add provenance to toolhive-doc-mcp entries

[danbarr]

Summary

Adds the sigstore/cosign provenance block to both the official/ and toolhive/ registry entries for toolhive-doc-mcp. Images have been signed keylessly from StacklokLabs/toolhive-doc-mcp's release.yml for some time, but the expected signing identity wasn't recorded in the catalog, so catalog update-metadata --verify-provenance was silently skipping these entries (if ext.Provenance == nil { ... skipping verification }). Peers like osv already have this block; this brings toolhive-doc-mcp in line.

Test plan

• task build
• ./build/catalog update-metadata --verify-provenance --dry-run -v registries/official/servers/toolhive-doc-mcp/server.json → Provenance verified successfully
• ./build/catalog update-metadata --verify-provenance --dry-run -v registries/toolhive/servers/toolhive-doc-mcp/server.json → Provenance verified successfully

[github-actions]

Registry Build Preview

All registries built successfully!

Registry: official

• Total Servers: 84
  • Container-based: 53
  • Remote: 31
• Skills: 0
• File Size: 2.2M
• Last Updated: 2026-05-18T14:08:30Z

Registry: toolhive

• Total Servers: 112
  • Container-based: 81
  • Remote: 31
• Skills: 129
• File Size: 2.6M
• Last Updated: 2026-05-18T14:08:30Z

[github-actions]

MCP Server Tool List Updates (server.json)

The tool lists for modified MCP server entries have been automatically updated using catalog update-tools.

Summary

Server	Status	Details
No changes detected

---

This comment is automatically generated and will be updated as the workflow progresses.