I’m not ignoring the other two things listed, I’m realistic.
You described it like it was something rare for FAANG to do bad things. Or like it was bad only when it required whistleblowing… Think how many things got crushed by EEE tactics, and it’s only one class of examples of why big tech is inherently bad.
You were so close! The right solution is of course training an AI model that detects credentials and rejects commits that contain them!