We utilize artificial intelligence for site translations, and while we strive for accuracy, they may not always be 100% precise. Your understanding is appreciated.

OPSWAT Blog

Software Supply Chain Security

Latest Articles

Apr 3, 2026 | Supply Chain Security

The Axios npm Attack: How a Trusted Package Became a Malware Delivery System

Npm package hijacking is a software supply chain attack that turns trust in a package into the attack path. Attackers do not need to modify repository code if they can control the account that publishes the package.

Jan 21, 2026 | Industry News

Critical Apache Tika XXE Vulnerability: 3 Defense Layers Beyond Patching CVE-2025-66516

Dec 16, 2025 | Supply Chain Security

The 7 Weak Links in Today’s Software Supply Chains

Apr 22, 2025 | Supply Chain Security

SBOM Formats: Expert Insights on Software Supply Chain Security

Sep 11, 2024 | Supply Chain Security

Secure Your Bitbucket Repositories and Azure Containers from Supply Chain Attacks

Jul 15, 2024 | Supply Chain Security

Efficiency Meets Security: Integrate MetaDefender Software Supply Chain into JFrog Artifactory Workflow

Jun 25, 2024 | Supply Chain Security

SVG Unveiled: Understanding XXE Vulnerabilities and Defending Your Codebase

Sign up for the OPSWAT Newsletter

Get the latest OPSWAT company updates along with event information and the news that's driving the industry forward.

Follow Us on Social Media

Follow OPSWAT on your LinkedIn, Facebook, Twitter, and YouTube for more!

Explore More

Customer Stories

Hitachi Energy Leverages OPSWAT’s MetaDefender Core and K2100 Mobile Kiosks to Protect their Supply Chain