Long story short, I have been having some issues with a highly incompetent developer on our flagship project, and have subsequently fired him after rebuilding all of his submitted work myself. Today I revoked his repo access, i.e. totally removed him from the group. I need to push some significant changes to the repo ASAP, but I want to make sure everything is totally secure, first of all.
My question is, basically; is his SSH key now invalid, or would he still be able to access the repo? The answer is an obvious no as far as I can see it, but I’ve heard form a couple of sources that he may still be able to pull from the repo with the existing key (as far as I’m aware, it’s tied directly to your profile, though, so it should deny him access).
Thanks in advance for any responses, I just want to confirm this before I push anything.