And it might be a good decision in the dawn of the bot-internet. It forces even bots to be traceable to some real person or getting no access to the mentioned platforms. May be even bot-free platforms

I would rather say ignorance. They just shit on IT-security for the sake of fast product launches.

A slightly similar event happened to Pudu service robots last year August. An auth token that could be used for all their robots.

Sure. However, the outcome of the tool LLM always looks very likely. And if you aren‘t a subject matter expert the likely expected result looks very right. That‘s the difference - hard to spot the wrong things (even for experts)