Software developers, especially those working with cryptocurrencies, are once again facing a supply chain attack via open source code repositories.