Is there some best practice on creating a format for secret keys? If I create an API with secret keys, should I make them something like z77dj3kl-secret-pk-[secret-stuff]?

Is there an argument (security by obscurity?) that that makes it easier to spot it and abuse it?

Or would it be better to encode it in the secret bits somehow, add 16 control bits that have known values?