Nature, Published online: 27 February 2026; doi:10.1038/s41586-026-10308-x
Fast forward a year: they get a new phone and set up the messaging app. They aren’t prompted to use a passkey because one no longer exists in their credential manager. Instead, they use phone number verification to recover their account. They are then guided through the “restore backup” flow and prompted for their passkey.
,这一点在搜狗输入法下载中也有详细论述
Lack of Key Separation: Secure API design requires distinct keys for each environment (Publishable vs. Secret Keys). By relying on a single key format for both, the system invites compromise and confusion.
这种压力也延续到了第四季度。财报显示,在第四季度,瑞幸总净收入同比增长32.9%至127.77亿元,但净利润同比下滑39%至5.18亿元,GAAP营业利润率较2024年同期下滑4.1个百分点。净利润率从8.8%降至4.1%;非GAAP净利润6.99亿元,同比下滑25.5%。即便全年营业利润率维持在10.3%,但自营门店利润率从2024年的19.0%微降至17.8%,第四季度自营门店店级运营利润率更是从19.8%下滑至15.0%。