Doesn’t Google use a monorepo though? Even if there are guards against poisoning builds and commits, the risk of an RCE causing silent exfiltration of confidential trade secrets must be astronomical.
Incredibly sensitive portions of google3 are siloed and only a small part of the company can access them.
Tools like code search and the source checkout process also both check for accessing unusually large portions of the codebase, making it only possible to exfiltrate small portions of the codebase at once.
