add GITHUB_TOKEN to security scan build environment

Author: skovati

.github/workflows/security-scan.yml

@@ -12,13 +12,17 @@ on:
       - v*
   workflow_dispatch:
 
+env:
+  GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
+
 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
     permissions:
       actions: read
       contents: write
+      packages: read
       security-events: write
 
     strategy: