This thesis addresses the need to detect vulnerabilities in digital supply chains (DSCs). Modern supply chains rely on interconnected services such as software components, cloud platforms and IoT devices. While this interconnection brings several advantages, it also introduces new security challenges: the overall level of protection is no longer determined only by strong internal defenses, but also depends on the security level of each actor in the chain. Specifically, each link in the DSC needs a high level of security, which makes manual monitoring of the whole supply chain not scalable. To address this issue, this work starts from an existing threat analysis framework, TAMELESS (Threat & Attack ModEL Smart System).