Since it's a native app on your phone, the private key would only be stored on your phone. It's web clients where the risk can be, because the private key can be intercepted if it's stored on their servers.
So the scenario to be cautious is a web client asking for your private key without an option to use the nos2x or other extension to authenticate.
Andrew
npub1k9…dz7te
2023-01-16 22:27:13
in reply to nevent1q…49zc
Author Public Key
npub1k979np6dcpwh7mkfwk7wq3msezml48fh7wksp9hakakf8pwk3y5qhdz7tePublished at
2023-01-16 22:27:13Event JSON
{
"id": "2d4506e5f80a4317d508cc10d4e6e10d6eb430cb4be90990d33e689593978cdb",
"pubkey": "b17c59874dc05d7f6ec975bce04770c8b7fa9d37f3ad0096fdb76c9385d68928",
"created_at": 1673908033,
"kind": 1,
"tags": [
[
"e",
"10a34b314acef30bbf88b38c28336fe8b9b4694bf5bca61cc138b89cca60644a",
"",
"root"
],
[
"e",
"aabab7a072fd4d6a6f53ec4380974583b9104a04e0f6024f76685379f82a25bc",
"",
"reply"
],
[
"p",
"09e935f7c01fda340051a4700cfb9dde533202bdf56808f68cafef6bae07a5bd"
],
[
"p",
"a3eb29554bd27fca7f53f66272e4bb59d066f2f31708cf341540cb4729fbd841"
],
[
"p",
"cbf904c0702a361911c46d79379a6a502bc3bd0b4c56d25389e62d3ebf4a7db8"
]
],
"content": "Since it's a native app on your phone, the private key would only be stored on your phone. It's web clients where the risk can be, because the private key can be intercepted if it's stored on their servers.\n\nSo the scenario to be cautious is a web client asking for your private key without an option to use the nos2x or other extension to authenticate.",
"sig": "a56c3832853840422cf718c555aa494f58f3261b8ea1b07951adec1a632abcfd622c5a44bb406c082343cad9805d0f85ecb0ed482262987e3ad9948763be9672"
}