Comment by bux93

I'm seeing more of a gradual path.

Chrome 124 (april 24) introduced hybrid post-quantum TLS, and Chrome 131 (nov 24) switched to a hybrid using ML-KEM, which was standardized in 2024, just after Firefox 132 (oktober 2024), while openssh introduced a hybrid scheme in release 9.0 (April 2022) and made ML-KEM+25519 default in OpenSSH 10.0 (April 2025).

Hybrid PQ schemes being adopted in other places is people playing catch-up, not the avant garde.

I'd say digital signatures should be the foremost concern, those may need to provide non-repudiation for decades.