Potential fix for code scanning alert no. 4: Workflow does not contain permissions

[SachaMorard]

Potential fix for https://github.com/edgee-cloud/segment-component/security/code-scanning/4

In general, to fix this issue you add an explicit permissions: block either at the workflow root (to cover all jobs) or on the specific job flagged, granting only the minimal scopes required (often contents: read). In this workflow, some jobs already have tailored permissions (clippy needs checks: write, coverage needs contents: read), so the most targeted and least disruptive fix is to add a permissions: block to the test job itself.

Concretely, edit .github/workflows/check.yml under the test: job definition. Right after runs-on: ubuntu-latest (line 74), insert a permissions: section setting contents: read. This mirrors the minimal permission used by the coverage job and is sufficient for standard operations like actions/checkout and running tests, while preventing unnecessary write access. No imports or additional definitions are needed, since this is purely a YAML configuration change.

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

[coveralls]

Pull Request Test Coverage Report for Build 20655949054

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 98.952%

---

Totals
Change from base Build 20655812122:	0.0%
Covered Lines:	661
Relevant Lines:	668

---

💛 - Coveralls