fix: add permissions to dependency-review job

- Add contents: read and pull-requests: write to dependency-review job
- Fixes missing permissions for dependency checking in security workflow

Author: kristiyan-velkov

.github/workflows/security.yml

@@ -144,6 +144,9 @@ jobs:
     name: Dependency Review
     runs-on: ubuntu-latest
     if: github.event_name == 'pull_request'
+    permissions:
+      contents: read
+      pull-requests: write
 
     steps:
       - name: Checkout code