Merge commit 'a58a7cbbd9e0937a5d19b18f5b6bf3515aa3325b' into feature/kubemodel

.github/workflows/vulnerability-scan.yaml

@@ -1,9 +1,6 @@
 name: Trivy Vulnerability Scanner
 
-permissions:
-  issues: write
-  contents: read
-  security-events: write
+permissions: {}
 
 on:
   pull_request:
@@ -19,6 +16,10 @@ jobs:
   scan:
     name: Scan for Vulnerabilities
     runs-on: ubuntu-latest
+    permissions:
+      issues: write
+      contents: read
+      security-events: write
     steps:
       - name: Checkout code
         uses: actions/checkout@v6.0.2