If my api key and project secret id leaked, is it possible to reset these credentials? Or can i migrate the old project to a new project?
Best thing to do in this case is generate a new project in the dashboard and update your code to use the new API credentials. We will be adding functionality in the future that will allow rolling on Project Secrets so you can just update that in the case that it is leaked.
We also highly recommend using the other whitelisting features to secure your API requests.