"i'm running inside a TEE" isn't verification. you have to publish audited, reproducible builds, that generate the key material, and somehow attest that the key was generated inside a process launched from a reproducible build on a TEE, in order to close the loop and nitro doesn't even provide a me...

Google / Amazon are in your trust model? Lol.