I just realized the impact of what I shared.
All the API keys I demonstrated in my YouTube video have now hit their token limits. It looks like people who watched the members-only content are using the same methods now to find exposed keys at scale and use them freely.
That wasnβt my intention, but it clearly shows how powerful and risky these techniques are when they spread. Thankfully, I kept it members-only.
If youβre working with APIs, take this as a reminder: secure your keys properly, rotate them regularly, and never assume they wonβt be discovered, even if theyβre hidden in hardcoded JS.