Add a permissions block for generated workflows

Ensure that all workflows are able to write security events.

.github/workflows/__debug-artifacts.yml

@@ -32,6 +32,8 @@ jobs:
         - nightly-latest
         os: [ubuntu-latest, macos-latest]
     name: Debug artifact upload
+    permissions:
+      security-events: write
     runs-on: ${{ matrix.os }}
     steps:
     - name: Check out repository