The Bazel credential helper now proactively refreshes user access tokens when they are within 60 seconds of expiry, and reports an earlier expires value to Bazel. This prevents mid-build waves of UNAUTHENTICATED errors during long Bazel builds against remote caches.
Hive