Was thinking about Bitkey's multisig model, if the mobile app and server hold keys and it's 2/3 couldn't you be rugged by the server sending commands to the mobile app to sign a transaction created by the server?
Discussion
I think a better person to ping about this is https://bitkey.build/author/lindsey/
