How Amazon AWS does API keys

So, you head to GitHub and create a new repo. "I'm not paying for more private repos" you mutter, and don't really think much about it. But at some point, you start using AWS, and you include your API key in your code. A quick git push, and all of a sudden your API key is just sitting out there for anyone to grab and start mining Bitcoin with. (This actually happens!)

Not to fret! AWS watches for your API key, and will send you an email if it's found out in the wild.

Amazon to the rescue!

Awesome! They alert you to the issue, make it really clear how to fix it, and in the meantime do their best to mitigate any damage to your account.

Once you fix it, they send a followup email thanking you for fixing the issue. Crisis adverted!