For funding a contract, we are rolling out a cool cryptography feature called disposable keys, which was developed with nostr in mind. It will let you generate a key locally on your machine for the deposit signing, then throw away the key. You can elect a key in cold storage to be a recovery key just in case, so you can use your npub to create disposable ephemeral signing keys that can be recovered by your nsec in a worst case scenario.
Also, the proof generation that is used for user authentication and interacting with the contract VM, is all secretly nostr notes underneath the hood :-) so nostr signing devices can interact with our API