A request is made using process.env.NEXT_PUBLIC_ELEVENLABS_API_KEY on the client. This is not a public key. This api key should only be used in the backend. Elevenlabs does not have a way to make requests from the client yet.
You can very easily steal the api key from the inspector network tab.
If you have exposed this api key I suggest you rotate it.
This request needs to be made from the backend moving forward.
A request is made using
process.env.NEXT_PUBLIC_ELEVENLABS_API_KEY
on the client. This is not a public key. This api key should only be used in the backend. Elevenlabs does not have a way to make requests from the client yet.You can very easily steal the api key from the inspector network tab.
If you have exposed this api key I suggest you rotate it.
This request needs to be made from the backend moving forward.