Hide Crashlytics API Key

[AlstonLin]

See https://twittercommunity.com/t/should-apikey-be-kept-secret/52644

Although the API key was designed so it could be exposed and be okay, it's still best practice to hide them. There's a method outlined above, and then AndroidManifest.xml would need to be removed from the commit history just in case.

As this isn't really a big deal, as Fabric designed it for this to be totally fine, we can leave this for later and not make this that high priority+