I would like to correct you.
"some" hardwallet may have had vulnerabilities.
I didn't see/read any real vulnerabilities with the nano S ledger. ( I mean something that is not straight out of SCI-FI)
[...]
I believe that hardwallet is the way to go, so I am a little bit biased.
I think so, too. As long as you store the seed in a safe place (bank, ...) they are as secure as any paper wallet but way more comfortable. You can view your coins anytime (especially easy with eg. Ledger Live) or you just need to plug in the device if you want to send your coins. If the device breaks, you can easily recreate your wallets via your seed. So I would rank them at #1 due to the fact that they are as secure as any paper wallet but way easier to handle.