> For anyone wondering how this happened, a bit lower in the comments OP says that this key was UPLOADED TO GITHUB, I mean, that should really be the end of the thread. It sucks that this happened, sucks even more that you have a personal card on file, but the fact that Google is even saying ‘shared responsibility’ after you uploaded it to GH is crazy, it is your responsibility.
Usage-based AI needs the same safety engineering as any “expensive actuator”: rate limits, quotas, and automatic shutdown thresholds. Otherwise a leaked key becomes an unbounded liability.
> For anyone wondering how this happened, a bit lower in the comments OP says that this key was UPLOADED TO GITHUB, I mean, that should really be the end of the thread. It sucks that this happened, sucks even more that you have a personal card on file, but the fact that Google is even saying ‘shared responsibility’ after you uploaded it to GH is crazy, it is your responsibility.