What you should do if the AWS Keys are leaked?

Many developer accidentally add AWS access key and secret in the code as a variable.  Assume it has been compromised and follow the steps below:

1. Go to IAM on AWS Dashboard
2. Find the user and click on the user to view the keys.
3. Make it  key inactive and delete the key
4. Create a new key for the user.
5. Review the cloud-trail (if available) logs for any malicious access for the key.