Security risks of sharing organization and project ids?

We want internal developers to create their api keys for testing purposes under a specific project.

When calling the API, we pass the project id to ensure the API key matches the project.

We have two options:

  • include the project_id in the code so users can easily test the project locally
  • direct users to the openai platform settings, select the correct project, copy paste the project id

The former reduces friction, but is there any security risk in sharing the project id (e.g. in source control)?