I don’t know what the solution is, but it would be nice to provide some form of API auth. Initial petition, probably before application passwords were introduced, did gather a lot of votes (60).
So it’s another API? I don’t think I’ve heard about this. I’ve only seen information in the code reference.