fix: preserve ci user access keys in janitor aws-nuke config

The janitor was deleting the ci IAM user's access keys because only the
"e2e" user was protected. Add the "ci" user and its access keys to the
preserve filters so aws-nuke skips them.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: typeid

ci/janitor/aws-nuke-config.yaml

@@ -102,10 +102,13 @@ accounts:
       # ---------------------------------------------------------------
       IAMUser:
         - "e2e"
+        - "ci"
 
       IAMUserAccessKey: &e2e-user-filters
         - property: UserName
           value: "e2e"
+        - property: UserName
+          value: "ci"
       IAMUserPolicyAttachment: *e2e-user-filters
       IAMUserPolicy: *glob-all
       IAMUserGroupAttachment: *e2e-user-filters