New to Nostr so maybe someone can explain the following to me.

During the onboarding, Nostr suggests to keep your private key secret and secure. So far so good.

Then the very first onboarding Screen of most app asks for the private key to be pasted ->Here<-

I just opened the @blowater page and that's the very first thing that shows up.

Isn't pasting your private key all around on the web defies the purpose of a **private** key ? Could not proxy Accounts be used for those unsafe use cases ?