Consider creating a burner nsec/npub that you wouldn't mind eventually abandoning for such security risks... Heck, I don't even consider signing extensions secure enough long-term; so, until something better like an nsec bunker becomes the standard, I only use what I consider to be a burner nsec/npub.