This is something I really like Mastodon for. The good apps will go through standard OAuth authentication rather than username/password authentication, which also means you can use passkeys/2FA to protect your account which apps often don’t bother implementing in any way.
That said, who’s to say the in-app browser window you’re entering your password into is really your browser and not just a malicious Chrome build the evil app developers added to mislead you? There’s a slightly elevated risk with storing your password in every app, but malicious app developers will be able to phish you regardless.