Fake abuse reports will be ignored when the registrar investigates anyway. But for the demo, I added hCaptcha to the form so that malicious actors won't be able to spam the form with abuse reports to a) damage the demo domain's MX reputation or b) overload a domain registrar's inbox.