Hi Naz! Thanks for the great article! Regarding the section Import this dependency into another gradle project - try pushing the other Gradle project to GitHub and you will see that your GITHUB_PACKAGES_IMPORT_TOKEN token will be revoked. This is documented here: Keeping GitHub OAuth Tokens Safe - The GitHub Blog, quoting:
We will email you if you push one of your OAuth Access Tokens to any public repository with a
git pushcommand. As an extra bonus, we’ll also revoke your token so it can’t be used to perform any unauthorized actions on your behalf.