Authoritative Guide to SBOM

Implement and Optimize use of Software Bill of Materials

Table of Contents Preface DOWNLOAD GUIDE CONTENTS

About the Guide

CycloneDX is a modern standard for the software supply chain.

The content in this guide results from continuous community feedback and input from leading experts in the software supply chain security field. This guide would not be possible without valuable feedback from the CycloneDX Industry Working Group (IWG), the CycloneDX Core Working Group (CWG), the many CycloneDX Feature Working Groups (FWG), CycloneDX maintainers and a global network of contributors and supporters.


Copyright © 2023 The OWASP Foundation.

This document is released under the Creative Commons Attribution 4.0 International. For any reuse or distribution, you must make clear to others the license terms of this work.

Version 1.0.0, 25 June 2023

Version Changes Updated On Updated By
1.0.0 Initial Release 2023-06-25 CycloneDX Core Working Group