[ci] Fix actionlint finding in reports workflow

[coisa]

Related Issue

Closes #244

Motivation / Context

• actionlint reported ShellCheck SC2162 in the reports workflow because the permission warning loop used read without -r.
• The warning loop should preserve emitted paths exactly while keeping the existing GitHub annotation behavior.

Changes

• Updates the reports workflow permission-fix loop to use while IFS= read -r line.
• Publishes pending required PHPUnit statuses as soon as workflow-dispatched wiki pointer tests start.
• Publishes each required PHPUnit status from its own matrix job instead of waiting for the aggregate matrix result.
• Disables matrix fail-fast so one failing version does not leave another required status without a final state.
• Adds changelog entries for the workflow lint and required-status fixes.

Verification

• composer dev-tools
• Focused command(s): actionlint .github/workflows/*.yml resources/github-actions/*.yml
• Focused command(s): composer dev-tools changelog:check
• Focused command(s): git diff --check
• Focused command(s): validated the test-matrix PHP extraction snippet locally
• Manual verification: Confirmed there is no equivalent permission loop in resources/github-actions/*.yml to align.

Documentation / Generated Output

• README updated
• docs/ updated
• Generated or synchronized output reviewed

Changelog

• Added a notable CHANGELOG.md entry

Reviewer Notes

• Full composer dev-tools was not run because this PR changes workflow shell/status behavior only; the relevant workflow lint, changelog check, and matrix extraction smoke test passed locally.

[github-actions]

🚀 Preview is available for this pull request.

• Docs: https://php-fast-forward.github.io/dev-tools/previews/pr-245/
• Coverage: https://php-fast-forward.github.io/dev-tools/previews/pr-245/coverage/
• Metrics: https://php-fast-forward.github.io/dev-tools/previews/pr-245/metrics/