"viewing inside ssl encrypted transactions (which should be illegal but hey)"
So it has a convenient interface for MITMing SSL sessions... Ugh.
Shit like this is why I'm going to have to nuke my existing public keys & re-exchange them between boxes via sneakernet at some point. Inasfar as it's possible, of course. I can't exactly mail a usb key to the GitHub building with new keys & instructions, can I?
Unless you think someone is MiMT'ing all of your pathways to the internet, just validate your keys from more than one place - even if your employer managed to manipulate your key when you connect through their internet connection, when you try to use the key (or look at the key fingerprint) from your home internet connection, you'll see that it doesn't match your private key.
Or, when you're uploading keys, don't trust an SSL connection from someone else's computer (even your employers) since the only way they can MiTM SSL is to put their own root cert on your computer.