You're also missing the point, that a real user with a real name will be tied to each web-request that is "approved".

This is the beginning of the mandatory age enforcement/requirement.

I looked for info and didn't find anything.

Obviously you could decode the code on the device that's showing it, so why not also provide a link?

I have to assume that it's because the mobile device must be one where they can check that you're only running google approved software (play integrity or whatever it's called these days, maybe the apple equivalent).

the qr itself is just a link to a recaptcha web page with a unique identifier in the url.

the magic is all hidden in the required app that's linked to your google account and device, and the interactions that take place between it and google's servers once it sees that code or link.

We invite you to join us at Next ‘26 to talk about new capabilities

This post is just the announcement for a conference talk

Exactly my thoughts, too. QR codes are a great tool, but also an incredibly valuable and opaque vector for scams.

The was one recently where they put scam QR stickers over parking payment signs, so users gave their credit card details to scammers. How are you supposed to catch that, as the end user? It's not like you know the URL you're supposed to be going to.

Normalizing scanning QR codes just to access a website is going to be abused by scammers in no time.

There are no doubt countless programs to scan QR codes on a desktop computer, and I know similar exists for phones. A camera is not needed.

At the same time though, that begs the question of what, exactly, is going to prevent an AI from doing the same goddamn thing? So it's still shit.