Yes it is common practice to do this - for the time being. Yes its a bad idea and yes there are people working on solutions.

But no biggie. Just treat your key as if it could be compromised and act accordingly.