A service account key has been publicly exposed on multiple public code repositories. Logs indicate the key was used to generate short-lived credentials. You need to immediately revoke all access for the service account.

What should you do?