Me too.

I don't mind to leak this sort of info when I message with nostr users that I already interact with publicly.

Of course the protocol should improve on this, but it is a damn good start.

And a more privacy rigorous use is already possible with some manual skills: create a fresh key and send to the other party a nostr JSON event certifying the new key signed with the original key, the receiver checks the validity of the embedded JSON with nak.nostr.com