Caution regarding my opsec : OpSec | Torhoo darknet markets

This post is about my opsec, and opsec in general.
For the moment, I have a classic laptop, on which I've only installed Qubes OS. To browse the classic darkweb (dread, dnm), I use the default option: whonix workstation via whonix gateway. I also access the clear web via a separate whonix station, on which I've managed to install a vpn (over tor) to raise as few red flags as possible.
I also use a parrot os vm, which I've managed to get to work with whonix gateway, so as never to expose my ip in the clear. In this vm, which is amnesiac, I have no information stored (obviously since it resets itself every time I run it), I do my hacking stuff which is not the subject here. I have all my credentials stored in a vm without internet access, and my PGP keys.
My opsec is pretty basic, I've always thought it better to trust those who are experts in the field rather than do everything myself (I don't think I'd be able to get better opsec by building my own operating system, qubes is the best for me).

Also, I plan to host services on the darkweb, so I may need a much better opsec than I have now. I have enough knowledge to do it. I don't want to use tails, I need to have persistence.

I have several questions:
- Is my current configuration sufficient to become a darknet operator? I obviously won't talk about what I plan to do, but if I were a dnm operator (which I'm not), would I need better opsec? What should I improve?
- Is parrot OS the best OS for hacking AND opsec? Give me other options if you can. At the moment, my connection is VERY VERY slow because of tor.
- Is tor 100% secure? For now, I base my opsec on tor, if tor doesn't protect me, I'm dead.

But my main concern right now is my opsec, what do I need to improve, is it good enough, what do people in general do better than me?