Resize it, or nuke it together with the Windows installation and have the distro create a new, bigger one automatically during installation.

It's a Fat32 partition with "esp/boot" flags on a HDD/SSD man. Are we unable to resize partitions now? How do we install Linux at all I ask.

Distros using EFI partition instead of /boot will clean up after themselves just as all distros clean up the /boot folder of unused kernels.

They are basically using the EFI partition as if it was a FAT32 /boot partition. Because that's all it is. A Fat32 partition with some flags set.

Afaik GRUB can be set to ask for password before editing boot settings

You're wrong.

GRUB also auto-detects OS - in distros like Ubuntu, Fedora etc. it's automatically done as a part of kernel updates. In distros like Arch where you choose the bootloader, it doesn't get run automatically, but we just need to run a simple command "grub-mkconfig -o <grub_cfg_file_path>" and GRUB auto-detects all installed OS and adds entries for them.

You can easily set up the command line parameters for Linux kernels in GRUB, in the config file /etc/default/grub. You can also boot memtest from GRUB - it's not new, that capability has been around for several years.

I don't know about Secure Boot support, but I use Arch Linux so I have to set up stuff manually. I know someone who has Ubuntu installed on a computer, with Secure Boot enabled and it uses Grub, and it works fine for them, no manual config required.

Maybe you should mention that the GRUB os detection uses os-prober - I patched it several times

The topic is only about Secure Boot enabled installations where you chainload a signed (by the OS vendor) grub.efi from a signed (usually with MS keys) shim.efi. I would prefer a MS signed systemd-boot/gummiboot binary without any limits however - that would be a much cooler news

no sir, you are wrong.

No, that's a helper script that runs and rebuilds a STATIC grub configuration.
"auto-detection" means that it actually does this on its own power, and GRUB does not.

The issue for multiboot environments is that you have a single distro that will be the "main GRUB distro" as it is the one running this helper script to update the GRUB STATIC configuration, you can't have all distros update a common grub without screwing up stuff.

rEFInd by default will scan for stuff on boot so you don't need to write any configuration. It does support static config too but it's not required. It's basically fire-and-forget. I never touched my EFI partition in years (while each time you update the kernel the "auto detection" helper script

And each time you need to run the grub update script, that updates the STATIC grub configuration. And if you have multiple OS then you need to have different commandlines for each in /etc/default/grub.

rEFInd reads the kernel commandline parameter file in each distro's /boot every boot so you just edit it and it's ready, and you don't need to have a central file for all distros.