I found a feature request, referring an alarming new type of malware, using DOH to attack. Since the pihole documentation offers a guide to implement it, I assume it is well within pihole's scope.
The feature request (already rejected as usual) refers a github page, containing lists with DNS entries, and, more relevant here, IPv4 and IPv6 lists, that could be used in the suggested IPlists.list.
I was wondering if this would count as a good enough reason, making pihole users, using DOH, implemented per pihole's guide, resistant to these attacks?
P.S. I've relayed this information to Simon, hoping he will consider the feature request.