Improve GitLab Security policy

[tas50]

Describe the bug There are a few things we can extend cnquery to check and then add to this policy per: https://about.gitlab.com/blog/2023/05/31/securing-your-code-on-gitlab/ as well as some common sense items from the API.

Groups:

• Blocking forking repos outside the project
• Enable delayed project deletion
• Limit creating subgroups to owners
• Limit creating projects to owners

Projects:

• Disable treating skipped pipelines as successful
• Only allow merges if pipelines succeed
• Use separate caches for protected branches.
• Disable public builds
• Set the releases access level to private
• Use separated caches for protected branches
• Disable shared runners

[tas50]

@HRouhani Is there anything worth adding here now that we have the CIS benchmark?