Here we go again! 2FA vs Gitlab instructions.
philipp at marek.priv.at
Sun Mar 27 16:31:31 UTC 2022
>*Server refused public-key signature despite accepting key!*
Potentially-incompatible changes ================================ This release disables RSA signatures using the SHA-1 hash algorithm by default. This change has been made as the SHA-1 hash algorithm is cryptographically broken, and it is possible to create chosen-prefix hash collisions for <USD$50K 
Incompatibility is more likely when connecting to older SSH implementations that have not been upgraded or have not closely tracked improvements in the SSH protocol.
Can you update your SSH client to a newer Version?
More information about the clo-devel