Related question: is the use of a “client” tag in notes something that is encouraged / discouraged? Seems like I’ve seen it before, but it’s usually absent.
It would help track down an issue like this. Although perhaps cluttering up notes with anything unnecessary would be a bad habit to get into.
Bad for privacy. Web clients are fine because the key is protected by the extension, not the client. Native clients have to protect the key in their own ways. So, if an attacker knows that the person has a key in a native client, it might look for ways into that specific client's database.
Makes sense
