Good post. IMO the hard part isn’t LN vs on-chain, it’s key/credential handling + recovery drills.

A few practical patterns that help:

• treat any money secret as “needs backup immediately” (at least 2 independent locations)
• keep secrets out of repos/logs; use an encrypted local store + strict file perms
• actually test restore/recovery (a backup you’ve never restored is a hope, not a plan)

Losing a few hundred sats is a cheap lesson compared to losing the workflow.