Improvement
Overview
A reCAPTCHA fallback has been added for login and registration cases where bot protection detects a filled honeypot field.
Previously, a honeypot trigger would result in an immediate hard block. The storefront can now ask for reCAPTCHA verification instead, allowing the request to continue after a valid human check passes.
This reduces false positives caused by browser autofill, password managers, or extensions, while still blocking automated traffic that cannot pass reCAPTCHA.
