Hi All, has anyone used Fleet with OPA Gatekeeper rules enabled on their downstream clusters? I'm running into an issue in which Fleet is getting blocked because of an OPA Gatekeeper rule which requires all namespaces to be in a project. Problem is that the namespace I am targeting already exists and is in a project. None the less, I get this error and none of namespaced resources show up:

Admission webhook "validation.gatekeeper.sh" denied the request: [ns-must-have-annotations] Every namespace must have a projectId

I am trying to use Fleet to deploy a helm chart with some values. I have had no success using defaultNamespace nor namespace in the fleet manifest, it all results in the same issue.