Update research-vuln-scan.yml

.github/workflows/research-vuln-scan.yml

@@ -74,6 +74,7 @@ jobs:
       contents: read # for actions/checkout to fetch code
       security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
+      pull-requests: write
     name: "Docker Scout"
     runs-on: "ubuntu-20.04"
     steps: