Can't quotetoot the original but:

This is a VERY CLEAR attack on open source projects. Why would random people be registering domains en masse for popular open source projects that (currently) only redirect to the authoritative home?

Why? Because they're building search engine credibility. Once the attackers have gained enough credibility, they will pull the bait and swap to an attack payload at the domain.

Exercise EXTREME caution with your internet searches.

https://social.kernel.org/objects/bc6c59fe-a58c-47f7-9f1a-604d21b7f003