It would be more secure if for banking websites the autofill could be turned off (individually selectable in the password manager).
The password could be copy pasted or also with a second device copied by using eyes from one to the other device.
there are banks with website that have the security flaw that once the device is registered, the account could be accessed by using autofill (if the device is left alone).