You can already do the former by using GitHub Events API. This simply helps with the accidental leak of tokens into the public, so Tencent / Repo owner can revoke it before it gets abused.
https://docs.github.com/en/rest/activity/events?apiVersion=2...