The way we configured the Jenkins instance, anybody able to log in will be able to do anything. This might not be the desired behavior, which leads to another section of the Global Security page in Jenkins.
You will find a section called Authorization, which provides many options. One is the GitHub Committer Authorization Strategy, which determines if a user is allowed to ...