To get ahead of the predictable marketing pitches from capitalist vultures:

No, automated vulnerability detection and "AI" will *not* solve 'supply chain problems' and especially not backdoors like the xz one. The technology is incapable of doing that, on a very fundamental level.

Anyone trying to sell you on automated stuff as the solution, is lying to your face and trying to scam you.