ResourceLoader::respond: request for private module 'user.tokens' denied
ResourceLoader::respond: request for private module 'user.options' denied
About half of these are from third-party referrers and simply hit load.php with modules we no longer support publicly.
However a fair amount actually have production referrers such as:
These private modules are embedded in OutputPage before any module load is triggered. So these shouldn't be possible. Investigate the origin and context of these requests.
Due to the response handling, these requests end up interrupting the dependency state machine. So whatever module ended up needing these will not executing due to missing dependencies. Would likely fail in an incomplete user interface or user-facing error of some kind.