What it does
The CycloneDX standard extended for AI/ML Bill of Materials. Provides a structured format for documenting all components of an AI system — models, training data, hyperparameters, dependencies, and deployment configurations.
Security relevance
AI supply chain attacks (LLM03, LLM05) are growing as organisations consume pre-trained models, fine-tuning datasets, and ML libraries from external sources. An AIBOM provides the inventory needed to track what's in your AI stack, detect compromised components, and respond to supply chain incidents. The OWASP Agentic Top 10 (Appendix B) explicitly identifies CycloneDX as foundational to ASI04 (Supply Chain) defense. CycloneDX answers 'what components are in my AI system?' while the ASI framework addresses 'how can those components behave unsafely?'
When to use it
Implement when you need formal supply chain governance for AI systems. Requires integration with CI/CD pipelines, ML training infrastructure, and model registries. Expert-level work that builds on existing SBOM practices.
OWASP coverage
Risks addressed — mapped to both OWASP Top 10 standards. 2 in LLM, 1 in Agentic.
The raw record
What Yuntona stores. Single source of truth — fork it on GitHub.
name: CycloneDX (AIBOM) slug: cyclonedx-aibom type: Mixed category: AI Governance & Standards url: https://cyclonedx.org reviewed: 2026-04 added: 2026-04 updated: 2026-04 risks: llm: [LLM03, LLM05] asi: [ASI04] complexity: Expert Required pricing: — audience: Builder lifecycle: [govern] tags: [Open Source, SBOM, Standard]