npm Scope Squatting

Registering a plausible but unclaimed npm scope that mimics a trusted vendor's domain or brand. Unlike typosquatting (misspelling), scope squatting exploits the gap between a vendor's actual npm scope and other plausible scope names derived from their domains, product names, or brand variations. npm scope registration is first-come-first-served with no trademark verification.