Move specific permissions into job

Author: aegilops

.github/workflows/eslint.yml

@@ -20,13 +20,14 @@ on:
 
 permissions:
   contents: read
-  security-events: write
-  actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
 
 jobs:
   eslint:
     name: Run eslint scanning
     runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+      actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
     steps:
       - name: Checkout code
         uses: actions/checkout@4.2.2