Brokkr

Yes, you have to trust the company storing the passwords.

A good company can store passwords in ways that are secure to most hacking attempts. It isn’t impossible to break the encryption typically used, but it is difficult enough that most thieves will not have the resources or time to make use of the data. They want the low effort password databases, not the difficult and expensive ones.

That sounds great, but also isn’t a solution for most people.

It is not portable in the sense that you need bitwarden installed on the device you are trying to connect from.

Passwords can be plain text, which means I can copy, paste, and dictate them to a device that does not have additional software installed.

They were surpassed by password managers and 2fa.

While the lock-in issue is annoying and a good reason not to adopt these, the device failure issue is a tech killer. Especially when I can use a password manager. This means I can remember two passwords (email and password manager), make them secure, and then always recover all my accounts.

Passkeys are a technology that were surpassed 10 years before their introduction and I believe the only reason they are being pushed is because security people think they are cool and tech companies would be delighted to lock you into their system.