The author does not seem to provide any proof or example of why Passkeys are "weak" or "flawed". Anyone has some references about that? Would love to know if it's the case.