Investigate Gitlab webhooks to see if we can subscribe to user permission events
We could look into https://docs.gitlab.com/ee/administration/system_hooks.html or https://docs.gitlab.com/ee/user/project/integrations/webhook_events.html#group-member-events. We would want some way to filter these requests as there could be a lot of events when people are modified through legit channels.