Ensure CI_JOB_TOKEN access is limited
https://docs.gitlab.com/ee/ci/jobs/ci_job_token.html#limit-gitlab-cicd-job-token-access
I'm not sure it's a good idea to enable this now as basically every project we have is going to inherit the legacy (less secure) behavior but until we start migrating some projects, but we should probably make sure new projects didn't revert back to the old behavior.
This setting is enabled by default for all new projects, and disabled by default in projects created before GitLab 14.1
So I'm thinking we should raise a violation if Limit CI_JOB_TOKEN access
is disabled
and the project's creation date >= 14.1 release date.
Edited by Dominic Couture