{"id":"MAL-2026-1003","summary":"Malicious code in cnnct-eaas-corre (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: oracle-using-macaron (2111dcd49405f8c078842cf7af9cfe21ddb54f558d66f2949da752d0e62cddd1)\nThis package appears to be a typo-squatting attempt targeting connect-eaas-core.\n","modified":"2026-02-24T07:13:53.407811Z","published":"2026-02-23T16:00:12Z","database_specific":{"malicious-packages-origins":[{"versions":["1322.0.0"],"import_time":"2026-02-23T16:00:12Z","modified_time":"2026-02-23T16:00:12Z","source":"oracle-using-macaron","sha256":"2111dcd49405f8c078842cf7af9cfe21ddb54f558d66f2949da752d0e62cddd1"}]},"affected":[{"package":{"name":"cnnct-eaas-corre","ecosystem":"PyPI","purl":"pkg:pypi/cnnct-eaas-corre"},"versions":["1322.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/cnnct-eaas-corre/MAL-2026-1003.json"}}],"schema_version":"1.7.3","credits":[{"name":"Oracle using Macaron","contact":["https://github.com/oracle/macaron"],"type":"FINDER"}]}