Define permissions following the principle of least privilege #1359

	name: UKI tests
	on:
	pull_request:
	push:
	branches:
	- master

	permissions: read-all
	concurrency:
	group: ci-uki-${{ github.head_ref \|\| github.ref }}-${{ github.repository }}
	cancel-in-progress: true
	env:
	FORCE_COLOR: 1
	jobs:
	test-uki:
Check failure on line 15 in .github/workflows/uki.yaml View workflow run for this annotation GitHub Actions / UKI tests Invalid workflow file The workflow is not valid. .github/workflows/uki.yaml (Line: 15, Col: 3): Error calling workflow 'kairos-io/kairos/.github/workflows/reusable-uki-test.yaml@7c82457751e1c02be863da7f11e8265fbcb39a42'. The workflow is requesting 'attestations: read, checks: read, deployments: read, discussions: read, issues: read, packages: read, pages: read, pull-requests: read, repository-projects: read, statuses: read', but is only allowed 'attestations: none, checks: none, deployments: none, discussions: none, issues: none, packages: non[...]
	strategy:
	matrix:
	include:
	- flavor: ubuntu
	flavor_release: 24.04
	family: ubuntu
	base_image: ubuntu:24.04
	- flavor: fedora
	family: rhel
	flavor_release: 40
	base_image: fedora:40
	uses: ./.github/workflows/reusable-uki-test.yaml
	permissions:
	id-token: write # OIDC support
	contents: write
	actions: read
	security-events: write
	secrets: inherit
	with:
	base_image: ${{ matrix.base_image }}
	family: ${{ matrix.family }}
	flavor: ${{ matrix.flavor }}
	flavor_release: ${{ matrix.flavor_release }}

Provide feedback