let me be clear on my arguments. 1 - I don't belive it's vendor lock in because it follows the nip spec like i said prev. . 2 - we are talking about nsecbunker of primal, amber (that you mentioned) nsecbunker works the same way, I think nsecbunker in general is the best option to sign events across web and mobile simultaneously. 3- I don't think it's an honeypot bc they follow spec and your keys don't leave the signer. 4-Nostr best practices in development is to follow nip spec, regarding security of keys it's the user choice according to is preference and needs from the most secure options to the less secure but more convinient. To wrap, nsecbunker is a valid option and primal follows the spec, and to be clear I don't use primal at all.