This makes a lot of sense and you were insightful about it! But what about the incentive to use NPUB, perhaps it would be a way to test what is new - even not creating anything, but observing what is good, in order to put the NSEC and move on.
Or am I very wrong?! And I may be, when my humble thought. #asknostr nostr:note1u7k7whx85e3qesd5rpg4nyx7szm0s05whg90ykfza9xlut2cjuvste4jfd
Thank you. That would be a way to test an app or client. However, it does not vet the security of apps once you plug in your NSEC.
Clients already have the function to log in via NPUB. You can actually log in and spy on anyone's Nostr account, you just can't post or reply from it.
You can also use something like Amber to manage your one key and sign into clients in a protected way.
I am proposing something more robust.
Oddbean new post about login | logout