You can assign groups and set permissions for all repositories and refine them for each repository and even per branch or tag as needed. I recommend to check which users can do the following:
- Delete the repository
- Force push (this could rewrite the history in the repository)
- Create a repository
- Bypass policies
If you set the right settings, you can prevent the loss of your code.