Revoke a Repository Access Token

When an Access Token is no longer needed or has been compromised, a Repository admin should remove (or revoke) it from the repository. Revoking a Repository Access Token removes all access granted to the token, and any applications using the token will lose access to the repository.

To revoke a Repository Access Token:

  1. At, navigate to the repository the Access Token was created for.

  2. On the sidebar, select Repository Settings.

  3. On the sidebar, under Security, select Access tokens.

  4. Find the Access Token and select Revoke. Then confirm that you want to revoke the token.

Additional Help