Then again, with the thousands, if not tens of thousands of oauth credentials checked in on public github repos, I don't really see that revoking access to one credential as a major bottle neck.