The lightning node is exposed to the internet, so 🤷
But I'm planning to add spending caps, so it can't get drained. Basically its giving all apps that can sign events spending power, which is a bigger risk imo.
Discussion
Yeah but it changes the security model of what was before just in lnurl webapp with invoice permissions.
Alby's nostr-wallet-connect implementation uses the admin macaroon but it's not associated with a public webserver, it simply talks to nostr relays.