These are great points, but there is something more that phones have going for them.

All modern phones are full-disk encrypted by default, and can be remote wiped. I think this is only the case for Mac laptops, but not for Linux and Windows.

So if your phone is stolen, it’s not really a risk of the thief having your password manager and your 2FA at the same time, but rather can they get in to your phone and then password manager and 2FA before you can trigger the remote wipe.

Unless the attacker is sophisticated enough to mirror the whole disk and attack it offline.

I too am a bit speechless that two companies get to censor what all stores are allowed to sell.