Potential fix for code scanning alert no. 1: Workflow does not contain permissions

[cinderellasecure]

Potential fix for https://github.com/github/freno-client/security/code-scanning/1

The best way to fix this issue is to add an explicit permissions key to the workflow, set to the minimal required privilege. In this case, since the workflow only checks out code, installs dependencies, and runs tests, it does not appear to need write access to any resources. Therefore, you should add permissions: contents: read at the root level of the workflow, which will apply to all jobs unless overridden. This should be placed immediately after the name: and before the on: block for clarity and convention.

No further methods, imports, or definitions are required for this change.

Suggested fixes powered by Copilot Autofix. Review carefully before merging.