Making a request to the Paystack API will require you to provide your Paystack Secret Key and doing this from the frontend will mean that if anyone "inspects the website's element" from their browser, the secret key will be seen also and a bad actor can make initialize transactions directly with it