Is it possible to have an nsec with zero counterparty rug risk? Any time you enter it into a client there exists some risk of exposure, right? Like a hot wallet. Is anyone working on the equivalent of a hardware wallet for nsecs and the necessary client infrastructure?