more or less risks than taking your key and pasting into various nostr websites or apps? less, right? much less. im just thinking of ways to help with user retention and we obviously have a long way to go with authentication.

The risk is entirely dependent on the client handling the keys. Could be more secure. Could be DRASTICALLY less secure... This requires trust.