Don't trust any company to highlight or discuss the negative sides of their products and services. Trezor included. They are primarily interested in the success of their company. Trezor has been aware of the seed and PIN extraction vulnerability that's been present in models One and T for years, but they are not going to have their users focus on that and say something like, we absolutely recommend and insist that you use an additional passphrase with your Model One/T because of an unfixable hardware vulnerability that exists in these devices. They will write about the extra security and benefits you get from using a passphrase, but without discussing their own shortcomings. It's against their interests to do that although end users would benefit from knowing this.