I've been using passkeys for some time now. Once you have a working setup they are very handy, and highly secure. It's more than just a password - it's asymmetric authentication, just like SSH keys, Nostr keys, or bitcoin addresses.

IMO the biggest problem with passkeys is how difficult they are to properly back up. No deterministic backups like the classic BIP39 phrase. Each passkey is random and unique, so you have to keep them all backed up manually like Bitcoin used to require in the early days. Most passkey authenticators make it intentionally difficult to export passkeys.

Because of this, and because not everyone can get them working, we'll always need passwords as a backup authentication method.