Is This an Issue of Ad-Blocking?

The problem here is part of a broader category of the supply chain attacks, where that the adversaries are going after development. They're actually attacking the development a ecosystem. Rather than trying to break in through the front door of the network of their intended victims, they're coming in through the development channels. The only thing i can think of is this concept of like, white listing applications so that non approved applications can't run. I don't know much other way you could stop this either than just treating everything as incredibly suspicious and just monitoring the heck out of any sort of odd behavior.