They might not produce anything, but on the flip side they also are the only ones on that list that have to be prepared to increase data storage by hundreds of hours per minute! And that doesn’t include multiple copies for different quality etc.
Honestly YouTube is probably one of the few companies that deserves to be able to raise their prices unless they start deleting old content en masse so they don’t have to infinitely scale.
That being said, I wouldn’t pay $14. It’s just taking advantage of matching all the other streaming services raising their prices, something being done purely out of greed in the name of profits. Everything is overpriced now, I hate this.
Unless they have access to your private key then there’s no way they can sign code as you.
Alternatively yes, access to your password (and 2fa) would allow them the ability to add an ssh private key for you.
But that’s irrelevant because the issue at hand is that I can make a commit to a repo that I have access to, but using your username, and there’s no way to verify it wasn’t you (actually there is but it requires some assumptions and is also dependent on the git hosting infrastructure)
However when you use signing, key ‘A’ may be able to access a repo but can’t sign commits as key ‘B’, so you can’t have the blame dropped on you for malicious commits (again, unless they also compromised your account/key)