Level validation does not check `hasTag` or `getTag`

### Before opening, please confirm:


- [x] I have [searched for duplicate or closed issues](https://github.com/cedar-policy/cedar/issues?q=is%3Aissue+).
- [x] I have read the guide for [submitting bug reports](https://github.com/cedar-policy/cedar/blob/main/CONTRIBUTING.md#bug-reports).
- [x] I have done my best to include a minimal, self-contained set of instructions for consistently reproducing the issue.

### Bug Category

Schemas and Validation

### Describe the bug

This policy validates at level `0`, but it required dereferencing `principal`, so it should only validate at a level greater than or equal to `1`

```
permit(principal, action, resource) when { principal.hasTag("foo") };
```

### Expected behavior

.

### Reproduction steps

.

### Code Snippet

```rust
// Put your code below this line.

```


### Log output

```
// Put your output below this line

```


### Additional configuration

_No response_

### Operating  System

_No response_

### Additional information and screenshots

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Level validation does not check `hasTag` or `getTag` #1503

Before opening, please confirm:

Bug Category

Describe the bug

Expected behavior

Reproduction steps

Code Snippet

Log output

Additional configuration

Operating System

Additional information and screenshots

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Level validation does not check hasTag or getTag #1503

Description

Before opening, please confirm:

Bug Category

Describe the bug

Expected behavior

Reproduction steps

Code Snippet

Log output

Additional configuration

Operating System

Additional information and screenshots

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Level validation does not check `hasTag` or `getTag` #1503