I heard they even have/had a feature that requires completing a cryptographic
proof of work in javascript, and there's probably no way to go around it, so
in those cases you really need a client that genuinely executes javascript.

You could probably go past that for a while by running it in a browser and
copying the cookies,  but they would likely block you again pretty soon.

Maybe setting extremely long pauses and using multiple proxies might help.