Potential fix for code scanning alert no. 3: Workflow does not contain permissions

[thpierce]

Potential fix for https://github.com/aws/aws-xray-sdk-node/security/code-scanning/3

To fix the problem, add a permissions block limiting GITHUB_TOKEN to read-only access to repository contents. The most straightforward approach is to add the following at the workflow root level (e.g., after the name: field), which will apply the restricted permissions to the entire workflow. This covers all jobs (in this case, just the lint job) and ensures that no unnecessary write access is granted. No imports, methods, or other code changes are required; this is a simple YAML edit.

---

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 84.31%. Comparing base (0963c1a) to head (eaa3d64).

Additional details and impacted files

@@           Coverage Diff           @@
##           master     #727   +/-   ##
=======================================
  Coverage   84.31%   84.31%           
=======================================
  Files          36       36           
  Lines        1817     1817           
=======================================
  Hits         1532     1532           
  Misses        285      285           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.