I started getting captchas on every login last week. Can embedded Google captcha script access pre-filled login and password values, which are on same login page? If so, is HN potentially leaking this to Google?
I think the only valid place for captchas is account registration page, not login page.
Might be relevant: https://github.com/google/recaptcha/issues/107