We’re making an app with the free plan. We're planning to use the api on a serverless app to do reverse geocoding and show a map and I wanted to know what are the risks of the api key being exposed in this case, and what are the best practices recommended for this kind of use.
Should I secure the key using a proxy? What would happen if someone stole the api key and exceedeed the 15.000 quota? would we start to be automatically charged, would the api stop working, would we receive a notification? Thank you!