If you could miniaturize them I would totally take a house hippo

Would having a synced Keepass database with a composite key protect against this?

When I made my database I created a composite key file that never goes online. I locally copy it to any device that needs to access the database. The idea was even if the password got compromised you can’t access the database without the key file