I have the following :-
1. SharePoint online 2013, and inside it I create a new Enterprise Wiki site collection.
2. then inside the built-in Members Security Group , i add everyone to it. as i need all our users to be able to add/edit/delete wiki pages.
3. till now every thing went fine.
4. then me as the site collection admin. i upload the site logo inside the "Site Assets" library , and i also upload some custom JavaScript files and a custom .css file inside the "Style library" library.
5. but the problem i am facing is that Contribute users , can also access these 2 libraries (Site Assets & Style Library) and remove/edit important files such as the custom .css, site log , etc...
So i am not sure what is the best appraoch to manage this risk ? i am thinking of stop inheriting permission for these 2 libraries (Site Assets & Style Library) , and then modify the permission for the "Members" to be Read instead of "Contribute".. but not sure why this is not done by defualt inside sharepoint? and if doing so from my side is a recommended appraoch? i am not sure which way i need to approach this problem?
Thanks