Since it’s that risky, it probably shouldn’t be permitted at all, and users should be required to use a local signer. This is essentially the biggest design flaw that exists.