It is considered good hygiene in software supply chain security to have expiration date for all publishing tokens.
What about adding an option for having an expiration date for access tokens?
@monperrus We agree, we’ve started work on this. (No release dates that I can announce at this point.)