Merge pull request #4699 from sashashura/patch-32

GitHub Workflows security hardening

.github/workflows/test_suite.yml

@@ -6,6 +6,9 @@ on:
       - master
   pull_request:
 
+permissions:
+  contents: read # to fetch code (actions/checkout)
+
 jobs:
 # the following are optional jobs and need to be configured according
 # to this project's settings: