Add a way to exempt specific files for some workflows for overwrite detection

We currently allow disabling file monitoring all together for a job or exempt specific files across all workflows. 

There is a need to have a more granular exempt policy. 

We should ideally have this be as-code. 