Yes. Nostr signatures are standardized. They're a particular type of cryptographic signature that every nostr app will recognize and accept as yours no matter which app signed your notes.

Thanks, does it mean every app using the Nostr _protocol_ can accept signature from Alby (as opposed to storing my nsec)? 

spiderman

nostr

Is Sharing Private Key with Websites a Necessary Part of Using Nostr?

Alby is trustworthy; at least, I trust Alby. Their code is all open source and they've been in bitcoin, and heavily involved in nostr, for a long time now.

The extension won't sign stuff without you giving permission and it will not reveal it to apps.