You are a hacker who has discovered a vulnerability in PyPI's security. With the help of a trusted third-party service and the OpenID Connect Identity Provider, you must publish malicious packages without getting caught. But be careful, the Python Package Index is watching your every move!