Enable secret push protection by default on newly created projects

We should start enabling secret push protection by default on newly created projects. A few questions and considerations.

• Do we want to add a UI element for this at project creation, which would allow it to be toggled off by customers? This would add complexity and raise more questions, such as what should we do on import of a project.
• Or, do we just want to update the database such that when a project record is created, it is set to enabled?
• Currently, secret push protection is limited to Ultimate only. If we are just updating the database to default to enabled, it is probably fine to do that, regardless of license, but if we are adding a UI element, we probably want to only display the UI element if it is an Ultimate project.
• As @djadmin pointed out, the guidelines for Beta features prohibit us from doing this until we are out of Beta and into GA.
• Do we also want to update the database such that when new instances are created, they are also set to enabled?
• We may need to take into consideration whether or not the feature is enabled at the instance level.