Bug - Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"

[wjohnston-sfdc]

Hi, I ran your code through checkov https://www.checkov.io/5.Policy%20Index/github_actions.html.

Command

/dist/checkov -d ./commitlint-github-action/ --framework github_actions

Snip of output

Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(CI)
	File: /.github/workflows/ci.yml:6-7
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Commitlint)
	File: /.github/workflows/commitlint.yml:0-1

added permissions: read to commitlint-github-action/.github/workflows/ci.yml

Can you patch both files?