Hi,

The GitHub Branch Source plugin implements the feature of `Scan Organization`, which basically scans a whole organization for GitHub repositories and updates them in Jenkins.

This is useful but usually we hit the API rate limit. I know that are are issues to handle this. However, the fact that everyone is able to click on `Scan Organization Now`, is a problem because usually only the Jenkins admins are aware of this. In big organizations, with hundreds of people using Jenkins (as users, not admins) this impacts.

Current behaviour

Everyone is able to click on `Scan Organization Now`.

Proposed behaviour

Only admins or people with specific role should be able to activate that feature.

There are a couple of implementations:

• Only admins should be able to trigger that feature
• Only users with Configure permission should be able to trigger that feature
• We could create a new permission type and only users with that permission type should be able to trigger that feature