While I appreciate the new scope feature, restricting access by 'resource' isn't what I need. I work with multiple teams and projects. Restricting access by team and project is far more important to me. I don't want my dev project tokens to be able to impact my production resources. I don't want the Client A team token to be able to access Client B resources.