GPA in Vault for gpg pgp keys

I see GPA for gpg keys comes standard in all whonix based AppVMs. But wouldn’t it be better for security if I generated my private keys in vault? I don’t see GPA in my vault qube as it is a fedora qube and not a whonix qube.

Should I create a new qube based off the whonix-ws template and make it have no networking? Essentially creating another vault but based on whonix instead of fedora. What do others do?