Your company has deployed all its Cloud Source Repositories in a separate GCP Project. You are tasked with granting developers in the dev Project access to commit code to the dev repository in that Project, following Google's best practice of least privilege. How would you proceed?