this really puts a big onus on clients to support NIP-42 (and fuck that NIP-44 shit just NIP-4 kind 4 messages ffs)
the sender is a big red flag for "money inside" right here
Excited to announce the preview of Lightning Addresses for Mutiny+ users! No more invoice requests needed when paying friends by name directly on Mutiny Wallet.
Providing Lightning Addresses to a non-custodial wallet can be challenging, as they require a web server and constant online presence. To solve this issue, we've integrated Federated Lightning Addresses!
Inspired by Kody Low's Hermes project, our new feature uses ecash locked to your pubkey so only you can spend it when back online. Your wallet listens for DMs on nostr and unlocks tokens once received. Keep an eye out for a deeper dive soon!
To sign up: add a Federation, subscribe to Mutiny+, pick a unique Lightning Address name. Feedback appreciated as we stress test and work out kinks!
Thank you for your support in making this feature possible. We'll integrate it into the sign-up flow at a later time, open up randomly generated Lightning Addresses for everyone, and add more flexibility to change federations.
Enjoy your new payment experience on Mutiny Wallet!
https://blog.mutinywallet.com/federated-lightning-addresses-for-mutiny-users/
Discussion
this is precisely the kind of reason why reasonable metadata security protection needs to be respected and why all access to DMs should be guarded by NIP-42 authentication
i hope now that fucking mutiny is offering such a system that people realise what a bone-head stupid thing it is to leave DMs mouldering