common: add some changes to permissions

.github/workflows/scan_coverage.yml

@@ -7,6 +7,11 @@ on:
       CODECOV_TOKEN:
         required: true
 
+permissions:
+  actions: read
+  contents: read
+  security-events: write
+
 env:
   # Note: All coverage scans, e.g. on pull requests, should be run in the same
   # environment.
@@ -24,8 +29,6 @@ env:
   TEST_BUILD:   debug
   FAULT_INJECTION: 1
 
-permissions: {}
-
 jobs:
   linux:
     name: Linux
@@ -41,7 +44,7 @@ jobs:
         run: cd $WORKDIR && ./build-CI.sh
 
       - name: Upload coverage to Codecov
-        uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # v5.3.1
+        uses: 
         with:
           root_dir: /home/runner/work/pmdk/pmdk/
           directory: /home/runner/work/pmdk/pmdk/

.github/workflows/scans.yml

@@ -33,6 +33,10 @@ jobs:
     secrets:
       CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
     name: Coverage
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
   call-documentation:
     uses: ./.github/workflows/scan_documentation.yml
     name: Documentation