SBOM (Software Bill of Materials)

A Software Bill of Materials is a formal, machine-readable inventory of all software components, libraries, and dependencies included in a software product. SBOMs enable organizations to identify whether specific open-source or third-party components are affected by newly disclosed vulnerabilities. In third-party cyber risk management, SBOM transparency is increasingly requested from software vendors as part of supply chain security due diligence, particularly following high-profile supply chain attacks targeting widely used software components.