@skry they're not, and people do, but nobody cares. anyway to be clear: browsers' password managers are totally insecure.
good options include bitwarden or keepassxc/keepassdx (the former is easier, and a good option if you dont want to invest energy on your password manager; latter is more tedious but is strictly offline which may be preferable)
@xyhhx @GossiTheDog @evacide Thank you. I have never used browser password managers, but I rarely hear any advice to the public from infosec pros about not using them. (Same with antivirus.)
I like Strongbox’s user experience for Keepassxc on macOS.