We have GitHub setup with master as a protected branch.
However, non-admins can trigger a rebuild / multiple rebuilds in Circle. On any branch.
In our case, that means, contributors are able to redeploy our application.
What is the best way to prevent this? We basically only need the project to deploy if account X did it.
The only way I can see, is to set the CIRCLE_USERNAME var in the deploy script.