Fix GitHub workflows to check file changes before user permissions (#250083)

* Initial plan for issue

* Fix workflow to check file changes before user permissions

Reorder workflow steps to first check if package-lock.json/Cargo.lock files
are modified, then only check user permissions if lockfiles were changed.
This prevents the workflow from failing when Copilot opens PRs that don't
modify lockfiles.

Co-authored-by: TylerLeonhardt <[email protected]>

* Fix yarn.lock workflow to check file changes before user permissions

Apply the same fix to the yarn.lock workflow that was applied to the
package-lock workflow. This prevents failures when Copilot opens PRs
that don't modify yarn.lock files.

Co-authored-by: TylerLeonhardt <[email protected]>

* Add explicit Copilot check to prevent lockfile modifications

Co-authored-by: TylerLeonhardt <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: TylerLeonhardt <[email protected]>