MetaDefender Software Supply Chain advances its mission to secure every stage of the software development lifecycle with version 3.1.0, expanding source code coverage, strengthening remediation workflows, and modernizing SBOM export capabilities to align with emerging regulatory and interoperability standards.
The newest release focuses on broader CI/CD integration, faster collaboration during incident response, and future-ready software transparency.
New in This Release
Azure DevOps Source Code Integration
Scan Azure DevOps repositories to detect vulnerabilities, secrets, and malware earlier in development.
Teams Remediation Mechanism
Deliver alerts directly into Microsoft Teams channels.
SPDX 3.0 SBOM Export
Export scan results as SPDX 3.0 files for improved compliance and interoperability.
Broader SDLC Integration: Secure More of Your Code, Earlier
Azure DevOps Source Code Scanning
The addition of Azure DevOps integration extends the repository coverage, enabling organizations to secure a larger portion of their development ecosystem.
By leveraging MetaDefender Software Supply Chain connecting our product with Azure DevOps Repos, teams can:
- Automatically scan source code throughout the development process
- Detect vulnerabilities, secrets, and malware before code reaches the build stage
- Strengthen shift-left practices with minimal overhead
Key Benefits
- Broader coverage across multi-platform CI/CD environments
- Earlier detection of risks across distributed teams
- Streamlined protection of cloud-hosted repositories
Smarter Remediation: Faster, More Collaborative Response
Teams Integration as a Remediation Mechanism
With version 3.1.0, these remediation mechanisms are expanded through the addition of Microsoft Teams as a new channel:
- Real-time alerts delivered directly to Teams channels
- Clear remediation instructions within existing collaboration workflows
- Faster coordination across AppSec, DevOps, and engineering groups
Key Benefits
- Reduced time-to-remediate through instant communication
- Consistent remediation workflows across soft delete, Jira, email, and now Teams
- Improved collaboration between cross-functional teams
This complements our current remediation features, including soft deletion of compromised repositories, automatic Jira ticket creation, and email notifications for broad stakeholder communication.
Modernized SBOM Support: Enhanced Compliance and Transparency
SPDX 3.0 Export
SBOM expectations are evolving, and teams need formats that provide better clarity and align with new compliance requirements. As our SBOM formats guide shows, understanding the differences between standards like SPDX and CycloneDX is key. MetaDefender Software Supply Chain 3.1.0 introduces SPDX 3.0 export directly from the Reports interface:
- Generate SBOMs using the latest SPDX 3.0 standard
- Improve component visibility and data consistency
- Streamline compliance with frameworks that increasingly mandate SBOM support
Key Benefits
- Future-ready SBOM format
- Broader compatibility with third-party tools
- Stronger transparency for internal and external stakeholders
A Stronger Platform Ahead
OPSWAT continues to improve MetaDefender Software Supply Chain with more automation, visibility, and control. To learn how these updates can support your workflows, connect with our experts.
Release Details
- Product: MetaDefender Software Supply Chain
- Version: 3.1.0
- Release Date: 10 December 2025
- Release Notes: 3.1.0 Release Notes
- Download: Available from the OPSWAT Portal
