Catch users trying to include files in private paths

I doubt this happens again in the future, so probably pretty low priority, but it would be nice to introduce some checks into the CI to ensure users aren't doing something crazy, like trying to import from user defined afs paths...

See: !1885 (merged)

Cheers, Matthew