if we could have standardization like that, we wouldn't need passwords

We also wouldn't be having an issue with password leaks as I expect it would be simpler to move on to passkeys (or something else) than implementing a standard way of password rotation...

Except passkeys are an opaque, awful solution.

They're hard to explain to users, the implementations want to lock people to specific devices and phones, you can't tell someone a passkey nor type it in easily over a serial link or between two devices which don't have electronic connectivity.

With the right apps, passkeys can be synced across devices (e.g. iCloud Keychain or 1Password).

If there was a standard, do you know how long it would take to get adopted across the interwebs.

10 years.

Passkeys essentially solve this, however they are not backwards compatible. If they were backwards compatible (e.g. an automated way to change passwords) then you might as well just enable Passkey as a replacement. Thats the conundrum.

I feel like we missed the chance to have a standard http resource for this stuff.

yes!

It's a shame, IMO, that the Basic Auth never got updated or superceded by something with a better UX and with modern security.