@betabug @mathew @jonny @david_chisnall @chris_evelyn The workaround is to use ed25519-sk backed by a Yubikey or similar FIDO2/U2F device, or KeePassXC dynamically loading and removing static SSH keys for you as its .kdbx password database is locked and unlocked over the course of your session.