SBOMix Blog

Deep dives into SBOM generation, AI model transparency, supply chain security, and compliance automation. Learn how to build visibility into your software and AI dependencies.

Awareness

Your SBOM stops at the package layer. Your AI stack doesn't.

Why traditional SBOMs miss the AI layer entirely, and what that gap means for your supply chain security.

Jun 27, 2026 Read →

Technical

What an AI-BOM records, and why MCP scope is the part that should worry you

Breaking down the five dimensions of AI risk and why agentic scope is the security issue nobody talks about.

Jul 4, 2026 Read →

Compliance

The AI-BOM is the inventory the EU AI Act is about to ask you for

How the EU AI Act turns AI model transparency from optional into evidence, and what that means for your organization.

Jul 11, 2026 Read →

Technical

Add AI-BOM to your CI in one GitHub Action, and gate on critical CVEs

Step-by-step guide to integrating SBOMix into your CI/CD pipeline and automating vulnerability gates.

Jul 18, 2026 Read →

Trust

Free CLI, $19 platform: why SBOMix is open source at the core

Why open source is the foundation of trust in security tooling, and when to use the free CLI versus the hosted platform.

Jul 25, 2026 Read →

Ready to see your blind spots?

Start with the free CLI or try the hosted platform with a 14-day free trial.

Get started free →