If I read this correctly, I as a user of  Nitrokey I am affected if I created the key pair on a computer with a vulnerable chip and have transferred the key to my Nitrokey. Is that correct?

Fill in the blank.

Nitrokey - Made in Berlin