What about the HW spyware module inside CPU that sends secrets to NSA?
https://www.qubes-os.org/hcl/#purism_librem-13-v2_i7-6500u_integrated-graphics-hd-520_kyle-rankin_r4-0
Trezor will be safer even without vault covenant. Adding complexity and reducing security doesn't seem like a good direction