DeadlyDays :
IDK if I am just ignorant, but something seems inherently insecure about passing biometric data from a windows OS to a windows web browser......
Pretty sure that's not how it'll work.
The app (in this case Edge) will just ask the OS to identify the user. The OS may then ask for the user's password, PIN, or biometric data. Once the user has been verified, the OS will notify the app that the user has been verified.
Chrome does something similar.
Whenever you want to see your currently saved passwords, it asks Windows to authenticate the user. You'll have to provide your Windows user password, not your Google account one. Windows won't tell Chrome what the password is, only that the person sitting in front of the PC is indeed the current user, and not someone else who just wants to take a picture of all your web credentials.