Global Cyber Agencies Release New SBOMs for AI to Enhance Supply Chain Security
Multiple government cyber agencies have released a new document outlining the minimum elements for Software Bills of Materials (SBOMs) for Artificial Intelligence (AI) systems. This initiative, led by the G7 Cybersecurity Working Group, aims to improve transparency and security in AI supply chains. The document, titled 'Software Bill of Materials (SBOM) for Artificial Intelligence - Minimum Elements,' was published on May 12, 2026. It introduces seven clusters of potential elements that can be utilized by both producers and users of AI systems. These clusters include Metadata, System Level Properties, Models, Dataset Properties, Key Performance Indicators, Infrastructure, and Security Properties. The document emphasizes that while these clusters are not mandatory, they are crucial for enhancing cybersecurity in AI supply chains. The guidance was jointly published by cyber agencies from Germany, Italy, France, Canada, the U.S., the UK, and Japan, in collaboration with the EU Commission. 
