Is it possible to block non-nip-05 users? Or how about an entire NIP-05 provider that allows spamers, bots, or just have arbitrary signups?

I still think timelocked fidelity bonds would be a better solution.

Trustless & pseudonymous.

But if nip-05 is all I got how do I leverage it?