Unfortunately, token approvals are a common attack vector for both hackers and scammers: the former can sometimes locate and exploit vulnerabilities in a smart contract's code. This can easily be a year later so check and revoke people ;)

Revoke (Many networks)

Unrekt (multiple networks)

approved.zone (Ethereum mainnet)

Cointool (multiple networks)

beefy.finance (BSC/BNB Smart Chain)

EverRevoke (multiple networks)