Just curious why Firefox never added support for token binding even Chrome had it and they removed it since other browsers never added it. Using fido hardware keys gives a false sense of protection because session cookies can still be stolen and used.