Saw in Computeractive today: They advise using a pword manager to store nonsense passwords that are long (preferably generated) - and then add your own short phrase or pin to each one (which you store nowhere). You store the password in the vault but even if the vault gets hacked you won't be vulnerable. Interesting advice...
and salt your chickens too to get the most mehudar meats
I use bitwarden and I believe its enough hishtadlus.
if intuit google are hacked, or open source isn't reliable enough, we got a bigger problem.