To avoid the risks associated with static tokens and key exposure, we require on more secure alternatives authentication mechanisms for Private Automation Hub storage authentication, such as;
Entra ID based authentication (RBAC with OAuth2) or Managed Identities.

FYI...Our Internal security team not accepting AAP product into production.