In theory, if I were to use an online solution, bad actors wouldn’t be able to pull my vault from memory.

It’s the same issue once you login to your vault via browser extension. Even if they don’t store your vault password in memory, they either store the entire vault (unlikely for size reasons) or a more temporary key to access the vault. Local compromise is full compromise already.