Potential fix for code scanning alert no. 4: Workflow does not contain permissions

[zaorinu]

Potential fix for https://github.com/zunalita/posts/security/code-scanning/4

To fix the problem, explicitly set the permissions key in the workflow file to restrict the GITHUB_TOKEN to the minimum required privileges. In this case, the workflow only needs to read repository contents (to check out code and read files), so contents: read is sufficient. This can be set at the workflow level (applies to all jobs) or at the job level (applies only to the specific job). The best practice is to set it at the workflow level unless a job needs different permissions. The change should be made at the top of .github/workflows/validate_post.yml, after the name: line and before the on: block.

---

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

[github-actions]

Welcome to zunalita/posts! And thank you for your contribution!

If you're new around here, don't worry—your contribution will be reviewed as soon as possible.

To make sure everything runs smoothly, please check the items below:

---

• I used assets with the owner's consent.

• I followed the project's coding standards.

• I tested my changes.

• I linked relevant issues in the description.

• I checked for typos and formatting errors.

---

By continuing, you accept the project's contributing guidelines and agree to follow them.