Prevent egress of code to unauthorized destinations
Description
Some organisations wish to keep their code entirely within their development ecosystem, with no way for it to be copied or used elsewhere. They wish to allow for offline code editing, but prevent the egress of code to any unauthorized destinations or systems. Code could be packaged up for remote use such that only certain approved editors or other tools are able to extract the information.
Proposal
This request mostly answered by the GitLab Web IDE. The key here is that the Web IDE would need to work offline – i.e. it would need to allow some way for code download/caching. However, the downloaded artifacts would need to be encrypted in such a way that the cache would not be readable if copied to some alternate location. In addition, the Web IDE would need some mechanic to prevent or limit copy and paste and screenshot functionality on the target system. Disabling copy/paste would be inherently client side, so some care would need to be taken to ensure this couldn’t be bypassed.