If your Bitwarden vault is compromised however, you only have a single factor, because both the password and the TOTP secret are stored in the same place.