This is some good stuff!
Daisuke fixed a 22-year old bug and we now prevent passwords in URLs from being saved in history!
Interesting.
It has nothing to do with website design. It’s part of the HTTP protocol. A poor part in today’s understanding and use cases, but in the 90s it would have made sense.
That’s good, but out of scope for a browser, really. Also there shouldn’t be passwords in URLs!
It is not out ot scope. Basic auth exists: https://username:password@example.com