Every app can leak it to hackers or outright steal it at will. I'd pretty much not want to have to rotate my key, especially as that's not yet a thing in nostr. So for now, only the nos2x browser extension knows my keys. 

 Yes I know what you mean but my opinion is that it is more important to use nostr and risk your key than to use twitter instead. It will come.