That script also does more than just Online KMS activation, which would be clear from a few seconds skimming.
There's also been no indication that any of these repos would get taken down. At all. py-kms has been there since 2017. You'd think if Microsoft had such a big problem with its existence, it'd have gotten pulled in the last 6 years.
KMS spoofers are the services running on those internet hosts the scripts talk to.
py-kms is on GitHub but I assume it won't remain there for the same reasons as yt-dlp.