Hi awesome-sbom maintainers,
Thank you for curating this excellent SBOM resource list.
I'd like to propose adding ai-bom to the tools section:
Name: ai-bom
URL: https://github.com/Trusera/ai-bom
Category: SBOM Generation Tools
Format: CycloneDX v1.6 (AI/ML-BOM extensions)
Description: Open-source scanner that generates SBOMs for AI workflows, detecting AI components across n8n, LangChain, CrewAI, AutoGen, and MCP servers.
Why it's relevant:
- First SBOM tool specifically for AI workflows and agentic systems
- Fills a gap: traditional SBOMs cover code dependencies, but miss AI-specific components (models, frameworks, MCP servers, agent tools)
- CycloneDX v1.6 compliant with AI/ML-BOM extensions
- Addresses emerging regulation (EU AI Act transparency requirements)
Use cases:
- Shadow AI discovery in enterprise environments
- AI supply chain security (OWASP ASI07)
- Compliance (EU AI Act, NIST AI RMF)
60+ GitHub stars, active development, Israeli enterprise adopters.
Would you consider adding it to the list?
Thanks!
Eliad Shahar, Co-founder & CTO, Trusera (trusera.io)
Hi awesome-sbom maintainers,
Thank you for curating this excellent SBOM resource list.
I'd like to propose adding ai-bom to the tools section:
Name: ai-bom
URL: https://github.com/Trusera/ai-bom
Category: SBOM Generation Tools
Format: CycloneDX v1.6 (AI/ML-BOM extensions)
Description: Open-source scanner that generates SBOMs for AI workflows, detecting AI components across n8n, LangChain, CrewAI, AutoGen, and MCP servers.
Why it's relevant:
Use cases:
60+ GitHub stars, active development, Israeli enterprise adopters.
Would you consider adding it to the list?
Thanks!
Eliad Shahar, Co-founder & CTO, Trusera (trusera.io)