Great questions - I have devices attached that are manageable to revoke individually if and when i need. The issue is that a bot got into my account before i enabled 2FA. It generated hundreds of device and application entries.
I have 2FA enabled now.
If this is a unique situation, an alternative to a feature would be the ability to submit a ticket to get it revoked on the back-end.
I've started to revoke one at a time but spending a lot of time and making not progress.