Potential fix for code scanning alert no. 8: Workflow does not contain permissions (#6)

Potential fix for
[https://github.com/hyperpolymath/ubicity/security/code-scanning/8](https://github.com/hyperpolymath/ubicity/security/code-scanning/8)

To resolve the problem, add a `permissions` block to the `snyk` job in
`.github/workflows/security.yml`. The minimal recommended permission for
Snyk scans is `contents: read`, which enables the job to read the
repository files necessary for scanning. Place the `permissions:` line
at the same level as `runs-on:` and above `steps:` in the `snyk` job
definition (which currently lacks such a block) and do not alter
existing functionality of the job. No new imports or external
definitions are required; this change is purely a configuration addition
to the workflow YAML.


_Suggested fixes powered by Copilot Autofix. Review carefully before
merging._

Signed-off-by: Jonathan D.A. Jewell <6759885+hyperpolymath@users.noreply.github.com>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: hyperpolymath

.github/workflows/security.yml

@@ -74,6 +74,8 @@ jobs:
     name: Snyk Security Scan
 
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
       - name: Checkout code