Potential fix for code scanning alert no. 1: Workflow does not contain permissions

[dukeluo]

Potential fix for https://github.com/dukeluo/eslint-plugin-check-file/security/code-scanning/1

To fix the issue, we will add a permissions block at the root level of the workflow. This block will define the least privileges required for the workflow to function correctly. Based on the steps in the workflow:

• The actions/checkout step requires contents: read to fetch the repository code.
• The codecov/codecov-action step requires contents: read and possibly statuses: write to upload coverage reports and update commit statuses.

We will add the following permissions block:

permissions:
  contents: read
  statuses: write

This ensures that the workflow has only the necessary permissions to complete its tasks.

---

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (1e167cf) to head (57e4291).
Report is 2 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main       #61   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           14        14           
  Lines         1083      1083           
=========================================
  Hits          1083      1083           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.