Hi Guys.

With cold storage/airgaps, this seems like the only real attack vector beside physical of course.

Does anyone have any best practice advice on how not to leak private keys, through signing via a usb device. 

Would this be something that eventual Trezor support could help with?  I suspect not unless you could set up multisig with one part on the Trezor device?