Forum Academy Marketplace Showcase Pricing Features

Is it safe to expose _id field via REST API?

Looking for opinions on exposing _id from the database to a client side application accessing my Bubble project via the REST API.

Coming from the conventional software world the best practice is NOT to expose the database’s native _id (in MongoDB) or primary key (SQL) for better security.

Does anyone have any guidance on whether passing an object’s _id around in my client side app and back to the bubble app via HTTP requests is safe to do?