Working in post-quantum crypto is cool, but attackers are still exploiting broken PRNGs used instead of CSPRNGs, leaks, and side channels today. They'll exploit them in the post-quantum world too.
We need a "Have I Been Pwned" for crypto addresses integrated into wallets.
Compromised keys don't always get swept immediately.
The hard part: one wallet-generation bug can define billions to hundreds of billions of potentially vulnerable addresses.