What do you think about the mitigation techniques?
I guess the wallet app could require the hw wallet to calculate the nonces from some randomness provided by both the wallet app and the hw wallet.
(If both your computer and your hw wallet were compromised, you’re doomed anyway…).
https://darkskippy.com/mitigations.html