because it's bad practice, otherwise your nsec remains in the app and doesn't leave it. as "secure" as every other app that you put your nsec into :)