[Code Quality] Fix missing permissions in 5 workflows to prevent runtime failures

[github-actions]

Description

Static analysis (actionlint) identified 5 workflows with missing GitHub permissions that will cause runtime failures when attempting GitHub API operations.

Affected Workflows

1. .github/workflows/daily-semgrep-scan.md
2. .github/workflows/dev.md
3. .github/workflows/example-permissions-warning.md
4. .github/workflows/pr-triage-agent.md
5. .github/workflows/test-create-pr-error-handling.md

Missing Permissions

All 5 workflows need these permissions added to their frontmatter:

permissions:
  issues: read
  pull-requests: read

Impact

Severity: High - Workflows will fail at runtime when attempting to access GitHub issues or pull requests

Error Example: Error: Resource not accessible by integration

Success Criteria

• All 5 workflow files updated with required permissions
• Workflows recompiled with make recompile
• No permission warnings in next static analysis scan
• Test one workflow to verify GitHub API access works

Source

Extracted from Static Analysis Report discussion #12036

Finding: Permission Warnings (5 workflows) - Priority: High

Recommended Fix

For each workflow, add to the frontmatter (between --- markers):

permissions:
  issues: read
  pull-requests: read

Then run:

make recompile

AI generated by Discussion Task Miner - Code Quality Improvement Agent

• expires on Feb 10, 2026, 9:06 PM UTC