fix(github): list all accessible repositories (#8522)

docs/tutorials/github/getting-started-github.md

@@ -37,26 +37,31 @@ Personal Access Tokens provide the simplest GitHub authentication method and sup
     - **Expiration**: Set an appropriate expiration date (recommended: 90 days or less)
     - **Repository access**: Choose "All repositories" or "Only select repositories" based on your needs
 
+    ???+ note "Public repositories"
+        Even if you select 'Only select repositories', the token will have access to the public repositories that you own or are a member of.
+
 5. **Configure Token Permissions**
     To enable Prowler functionality, configure the following permissions:
 
-    **Repository permissions:**
-    - **Contents**: Read-only access
-    - **Metadata**: Read-only access
-    - **Pull requests**: Read-only access
-    - **Security events**: Read-only access
-    - **Statuses**: Read-only access
+    - **Repository permissions:**
+        - **Contents**: Read-only access
+        - **Metadata**: Read-only access
+        - **Pull requests**: Read-only access
+        - **Security advisories**: Read-only access
+        - **Statuses**: Read-only access
 
-    **Organization permissions:**
-    - **Members**: Read-only access
+    - **Organization permissions:**
+        - **Members**: Read-only access
 
-    **Account permissions:**
-    - **Email addresses**: Read-only access
+    - **Account permissions:**
+        - **Email addresses**: Read-only access
 
 6. **Copy and Store the Token**
     - Copy the generated token immediately (GitHub displays tokens only once)
     - Store tokens securely using environment variables
 
+![GitHub Personal Access Token Permissions](./img/github-pat-permissions.png)
+
 #### **Option 2: Create a Classic Personal Access Token (Not Recommended)**
 
 ???+ warning "Security Risk"