Forced certificates renewal in kubeconfig and talosconfig if they were compromised

[nightguide]

Please tell me what to do if the certificates in kubeconfig or talosconfig were compromised by an attacker?

Is there any mechanism to force the re-creation of certificates?

I found MR:

https://github.com/siderolabs/cluster-api-control-plane-provider-talos/pull/143

It says here that only the certificate for kubeconfig is recreating and only after its expiration date.