Some actions OpenAI Should quickly apply to accounts

Somehow our API Key Compromised.
And guess what $6,000 consumed within 2 days…
its was holidays… and i was randomly checking emails and found it.

– OpenAI should ad an option to Whitelist IP address for API KEY

Sorry to hear this happened to you.

Have you revoked your keys and looked into how they were leaked? If you provide more details, we might be able to help you secure it.

You can also set up a hard-limit, so that you don’t spend more than you want… ie set it to your normal usage then if it spikes, it will stop working and notify you.

You can also reach out to to try to get a reimbursement. I think the idea of an IP whitelist would be great.


Do you not have a notification limit or hard spend limit set for the account?