I use a tool called SIW (System Information for Windows–https://www.gtopala.com/). SIW is able to retrieve and display a list of all websites with passwords stored in Brave without any need for permission. This seems like a very serious security vulnerability.
I am at a loss to understand why passwords are so exposed so easily, and I am at a loss to know what to do about my own security in this situation. This must get fixed.