Potential fix for code scanning alert no. 3: Workflow does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: chyroc

.github/workflows/ci.yml

@@ -10,6 +10,8 @@ jobs:
   test:
     name: Test
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     strategy:
       matrix:
         go-version: [ '1.18', '1.19', '1.20', '1.21', '1.22' , '1.23' , '1.24']
@@ -69,6 +71,8 @@ jobs:
     name: "Test success"
     if: always()
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     needs: [ test ]
     steps:
       - name: "Success"
@@ -82,6 +86,8 @@ jobs:
 
   draft:
     runs-on: ubuntu-latest
+    permissions:
+      contents: write
     needs: test_success
     if: github.ref == 'refs/heads/main'
     steps: