Following the principle of least privilege in workflow

[Fo3N0Th1ng]

Hi! This PR added explicit permissions for each job in the GitHub Actions workflow, which will help prevent workflows from exposing too many write permissions to malicious hackers.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 99.83%. Comparing base (fab96ac) to head (cc4c5a8).
⚠️ Report is 135 commits behind head on develop.

Additional details and impacted files

@@             Coverage Diff             @@
##           develop     #766      +/-   ##
===========================================
- Coverage    99.85%   99.83%   -0.02%     
===========================================
  Files           95      100       +5     
  Lines        27784    31535    +3751     
  Branches      2908     3036     +128     
===========================================
+ Hits         27743    31483    +3740     
- Misses          38       46       +8     
- Partials         3        6       +3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[ronf]

Thanks very much for your contribution!