My team checked out the similar thing they're pushing in ADO (https://learn.microsoft.com/en-us/azure/defender-for-cloud/a...). The messages from that thing do tell you to rotate, though AFAIK not having looked that far into it just breaks the build, not proactive push detection.