1

I accidentally leaked it. I searched the Github docs and account settings but did not find anything to recover.

Kallzvx
  • 594
  • 7
  • 23

1 Answers1

1

You should be able to regenerate a new PAT (Personal Access Token), and invalidate/remove the previous one in your to access your Settings / Developer Settings / Personal access tokens / Tokens (classics) section.

Then you should be able to test your RSS feeds, knowning that, as the Feed API page mentions:

Private feeds are only returned when authenticating via Basic Auth (USERNAME:TOKEN) since current feed URIs use the older, non revocable auth tokens.

You can list your feeds with

curl \
  -H "Accept: application/vnd.github+json" \
  -H "Authorization: Bearer <YOUR-TOKEN>" \
  https://api.github.com/feeds

Or use thrid-part GitHub feed generators like RSSHub (as listed here).

VonC
  • 1,262,500
  • 529
  • 4,410
  • 5,250
  • I see, so if I exposed my token for the private RSS feed then there is nothing I can do... – Kallzvx Nov 03 '22 at 20:38
  • @Kallzvx Yes, as I [explained here](https://stackoverflow.com/a/51505417/6309), a token is made to be revoked at any time (as opposed to a password, which is trickier to change). – VonC Nov 03 '22 at 20:54