Do you have a script to hide my API key(s) when making queries?
Yes, we have a reverse-proxy for WHOIS services available on GitHub.
The script allows hiding the API key(s) and therefore prevents sharing it (them) with a group. Meanwhile, customer/SP can host API keys locally for things like logging, restricting access, load-balancing one or more API keys, and returning modified or smaller data sets, among other use cases.