"The most likely scenario is that the PYPI_TOKEN was obtained through a prior credential harvesting operation."