As a former Active Social user we had the ability to restrict who could create a new group by role. This provided some protection agains abuse and in a private community ensured only administrators or moderators had this privilege.
In the social groups module there doesn't seem to be a way to apply this same role restriction. Removing the "Create Group" button from the template only removes the UI but the pathway is still there (exposing a significant security vulnerability)
Am I missing something in the module or is there another, secure, way to work around this issue?