That's a useful step, but the options are still Full Cloud Dependency or DIY with Zero Security.

Why haven't they implemented rudimentary access control with printer-side Basic Auth (or the equivalents auth for MQTT and FTP). Add optional SSL support to prevent tampering/MITM on a potentially hostile network, and the unauthenticated access concerns listed in [1] should disappear.

Any problems related to potentially damaging instructions should be best-effort mitigated by the firmware and otherwise indemnified by a "your own fault for using a third-party slicer" clause in the EULA.

Bambu Labs shouldn't need to be in the authentication/authorization path, unless we're actively using their cloud environment.