docs(readme): distinguish signed release binaries from unsigned source builds in SmartScreen section

[MukundaKatta]

Summary

Per #8, the README's Windows SmartScreen section told users the Windows binary was unsigned and would trigger SmartScreen. Meanwhile, `.github/workflows/release.yml` runs a `sign-windows` job that Authenticode-signs both amd64 and arm64 Windows executables via Azure Trusted Signing before packaging — so GitHub Release downloads should not prompt.

Reworded the section to keep the accurate info (source builds remain unsigned, Unblock-File guidance still helpful for those cases) while correcting the claim for release binaries.

Closes #8

Testing

Docs-only change.

[coderabbitai]

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (1)

• README.md is excluded by !**/*.md

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 4d6895f9-1d99-442c-b95f-4dbfd8105748

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[bradfair]

Superseded by #15, which rolls this README change in alongside the connector dialect-subcommand refactor and other Phase 3 scope.