With all the quantum bois running around telling us that every long tail exposed address (p2pk, p2tr, reused anything) is at risk of QC haxx0rz? Signing a message would turn your p2(w)pkh into a p2pk, like Satoshi's coin that lopp wants to confiscate because it's too insecure to sit there.

To be honest, I had never really thought about how message signing worked before doing some reading to write this post.

Did I misunderstand how it worked/works, or was message-signing kind of a bad idea?

I didn't find very great answers on Stack Exchange regarding message signing, and I'm dubious of Gemini's explanations.

Scoresby

Why would you ever expose the pubkey of a 

 address tho? Like... the whole point of having the hash and single-use keys is that you don't expose the pubkey before you spend it...

bitcoin

BIP322 Message Verification for Signing Devices - orangesurf

Why would you ever expose the pubkey of a `p2(w)pkh` address tho? Like... the whole point of having the hash and single-use keys is that you don't expose the pubkey before you spend it...