Hello-
The Security-Team has a contractor (@Danielattevelt) who will be performing a security review of the OIT-LDAP-Tools WMF-internal application. We have already verified their identity and granted them access to the related task: T155537. The relevant Diffusion repository is currently protected via the acl*security_team policy. I'd prefer to grant access to the repository to the specific, aforementioned user, but I'm not sure that's possible. If it's not possible, would the next best approach be to create a new Phabricator group where the specific, aforementioned user was a member and temporarily add that to the repository's access policy? Thanks.