(no title)

Aside from intellectual policy problems, in large codebases mistakes happen, including api keys being committed and pushed. You see it even in open source projects, and tools like gitrob[1] exist to exploit that.

You can see how both of those example issues are problematic, if even a snapshot of your codebase is being pushed off-site.

I think this is a crucially important feature for any large enterprise that has a codebase that is a significant effort of R&D resources.

Don't get me wrong, there are cloud services like github being used by medium to large shops, but the missing visibility into those decisions is that those choices are often regularly heavily vetted by security, legal, and engineering resources.

1 https://github.com/michenriksen/gitrob