Fine tune CI_JOB_TOKEN scope for write_repo

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Problem to solve

In #329550 (closed), we introduced a secure method of enabling project access via CI_JOB_TOKEN. The permission scope is still fairly broad in action.

Proposal

Add a scope to CI_JOB_TOKEN that enables the token to have write access to the repository called: write_repo

This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.