Software development is changing. Since the Internet allows far-flung development teams to collaboratively create software, open-source software supply chains are becoming more complex and sophisticated. This work tries to define the new open-source software supply chain model and presents a detailed survey of the security issues in the new open-source software supply chain architecture. Various emerging technologies, such as blockchain, machine learning (ML), and continuous fuzzing as solutions to the vulnerabilities in the open-source software supply chain have also been discussed. While many researchers and organizations are have already proposed new technologies and principles to handle the security issues in this area, proper and more effective solutions remain distant. There are new challenges and opportunities to secure the open-source software supply chain, which are also highlighted in this work.