If you can’t figure out how to handle an open source bot which clearly identifies itself and follows the Nostr specs then how are you going to handle a malicious actor that is intentionally deceptive?

nostr:note1j74qxdud2tcryvnhmhl6crp8qv7hl3duw8jghayjwcx5pejz9v8suydlha