Who says I'm not bitter? Just maybe not as bitter as I'm gonna be ten years from now, but I'm bitter. Anyway, don't tell anyone.

Yes, bots being >50% of all traffic is bonkers, but at the same time I'm increasingly becoming convinced that bot defenses are (largely? equally? also?) harmful to the overall ecosystem.

Everything bot detection relies on is basically ossification: TLS fingerprinting, protocol offering and preference, HTTP header presence and ordering, ...

Assuming / enforcing those is overall bad for the web, and all browsers and clients should really grease all of that.