The CI_JOB_TOKEN is a secure authentication token automatically generated for each job in your CI/CD pipeline. It allows the job to interact with GitLab resources like repositories, artifacts, and APIs — all without needing personal credentials. CI/CD jobs can use this token to access resources in other projects.
You are impacted if:
Your project currently uses “Limit access from this project” under Settings > CI/CD > Job token permissions.
You have jobs that use CI_JOB_TOKEN to access other GitLab projects.
Go to Settings > CI/CD > Job Token Permissions in your project. If “Limit access from this project” is enabled, you need to migrate the same rules to the “Authorized groups and projects” allowlist. Make sure to select "Only this project and any groups and projects in the allowlist".
Provided with