Example

Put whatever you like here: news, screenshots, test features, supporters, or remove this file and don’t use tabs at all.

Guidance

This section will host practical guidance for creating, maintaining, and operationalizing an AI Bill of Materials (AIBOM).

Workstreams

Prerequisites

The Prerequisites workstream team is assessing existing AI Bill of Materials (AI BOM) standards, particularly SBOM formats like CycloneDX 1.6 and SPDX 3.0, to determine how well they address AI-system requirements and where extensions may be needed. Over the past week, the team conducted a gap analysis of these standards and deepened its understanding of AI data lifecycle management, including model and data tracking. In the coming week, they plan to identify whether current specifications should be enhanced to represent AI assets such as dataset versioning, fine-tuning parameters, and key gap domains across architecture (model), data (provenance/integrity), and risk/governance.

Foundational Best Practices

The Foundational Best Practices workstream, is focused on creating a clear, actionable, and adoption-oriented foundation for AIBOM. Over the past week, the team completed the Table of Contents and mapped its alignment with other workstreams, finalized RACI-based roles and responsibilities, and defined the threat landscape and taxonomy. The upcoming week’s focus is on continuing development of the AIBOM Lifecycle by referencing established SBOM frameworks like CycloneDX. The roadmap aims for a version 0.1 release in November 2025, with progress currently on track for the end-of-month milestone.

Project Roadmap

Phase 1: Foundation & Best Practices

AIBOM Operationalizing Guide and Best Practices

• Objective: Create comprehensive guidance for AIBOM operationalization and best practices for secure AI systems
• Target Audience: Regulators, CISOs, Chief AI Officers, CTOs, Developers, AI Security Architects, LLMOps Engineers
• Timeline:
  • 📅 Review: November 2025
  • 🚀 Publication: February 2026

Phase 2: Standards & Format

AIBOM Format Review & Standardization

• Objective: Develop and review AIBOM format ensuring alignment with industry standards and regulatory requirements
• Focus Areas: Security, safety, and trust aspects
• Timeline:
  • 📅 Review: November 2025
  • 🚀 Publication: February 2026

Phase 3: Tooling & Implementation

AIBOM Development Tools

• Objective: Develop tools supporting AIBOM implementation and usage for AI system security and trustworthiness
• Deliverables: Open-source tools, validation frameworks, integration guides
• Timeline:
  • 📅 Review: August - December 2025
  • 🚀 Publication: March 2026

Phase 4: Sustainability & Growth

Funding & Strategic Partnerships

• Objective: Secure sustainable funding through strategic partnerships and industry collaboration
• Activities: Company discussions, partnership development, fundraising initiatives
• Timeline:
  • 🤝 Partnership Discussions: November 2025
  • 📈 Fundraising Launch: December 2025

Phase 5: Community & Awareness

Promotion & Industry Engagement

• Objective: Raise awareness and promote AIBOM adoption across the AI community
• Activities: Conference presentations, industry events, community outreach
• Timeline:
  • 🎤 Conference Applications: January 2026

📰 News & Updates

Stay informed about the latest developments, announcements, and milestones from the OWASP AIBOM project.

Latest Updates

🔔 Recent Announcements

📢 Update #2

Latest project developments and progress

🔗 Read on LinkedIn →

📢 Update #1

Project updates and community news

🔗 Read on LinkedIn →

🚀 Project Launch Announcement

Official announcement of the OWASP AIBOM project

🔗 Read on LinkedIn →

📬 Stay Connected

Follow us on social media and join our community to receive the latest updates:

• 💬 OWASP Slack - Join the #project-aibom-community channel
• 📧 Project Updates - Subscribe to receive news directly
• 🌐 LinkedIn - Follow our latest posts and announcements
• ⭐ GitHub - Star our repository to stay updated

For the most recent updates, visit our LinkedIn profile or join our community channels.

Join and Contribute

Get involved with the OWASP AIBOM project through the channels below. Each section explains how it helps you participate and contribute.

Project Home Page

Your starting point for everything AIBOM: updates, mission, roadmap, and resources.

• Visit: OWASP AIBOM

GitHub

Collaborate on content and site updates. Propose edits, open issues, and track progress.

• Repository: OWASP/www-project-aibom

Quick start checklist

• Fork the repository to your GitHub account
• Create a feature branch: git checkout -b feature/your-change
• Make your edits and run checks locally
• Commit with a clear message: feat: brief description
• Open a Pull Request and describe the change and rationale
• Link a related issue if applicable and request review

Slack

Join our community chat for announcements, Q&A, and working sessions. After joining the OWASP Slack, search for #project-aibom-community.

• Workspace invite: OWASP Slack Invite Link
  
• Note: You need to be an OWASP Member and signed into the OWASP Slack Workspace to join the channel.

Engage checklist

• Introduce yourself and share your interests in #project-aibom-community
• Subscribe to important threads to stay updated
• Join working sessions when announced in-channel
• Pick a GitHub issue and ask for context if needed
• Share feedback or ideas to help shape priorities

Project Membership

Become an official project member to receive updates and participate in working groups.

• Join the project: Fill Out Membership Form

🤝 Sponsorship

Partner with us to drive AI transparency, security, and responsible innovation worldwide.

💡 Why Sponsor OWASP AIBOM?

The OWASP AI Bill of Materials (AIBOM) project is at the forefront of AI security and transparency. By sponsoring this initiative, you’re investing in:

• 🔒 Enhanced AI Security — Advancing standards for secure AI supply chains
• 🌍 Global Impact — Reaching thousands of developers, security professionals, and organizations
• 🏛️ Regulatory Alignment — Supporting frameworks that meet emerging AI governance requirements
• 🚀 Innovation Leadership — Positioning your organization as a leader in responsible AI
• 🤝 Community Collaboration — Connecting with top experts and practitioners in AI security

🎯 Sponsorship Opportunities

What Your Support Enables

Your sponsorship directly contributes to:

• 📚 Research & Development — Creating comprehensive AIBOM standards and tools
• 🎓 Education & Training — Developing resources, workshops, and certification programs
• 🌐 Community Growth — Hosting meetups, conferences, and virtual events
• 🛠️ Open Source Tools — Building free, accessible tools for the community
• 📊 Documentation & Guides — Producing best practices and implementation guides

Sponsorship Benefits

Sponsors receive recognition and visibility through:

• ✨ Logo placement on project website and materials
• 📢 Social media acknowledgment across OWASP channels
• 🎤 Speaking opportunities at AIBOM events
• 🏆 Recognition in project documentation and publications
• 💼 Direct engagement with the AIBOM community
• 🎫 Priority access to workshops and training sessions

📋 Get Started

1️⃣ Review the Sponsorship Deck

Learn more about partnership opportunities and sponsorship tiers:

📄 View Sponsorship Deck

2️⃣ Contact Us

Ready to partner with OWASP AIBOM? Let’s discuss how we can collaborate:

Aruneesh Salhotra
OWASP AIBOM Project Lead

📧 [email protected]

🌟 Current Supporters

Thank you to all our supporters who make this project possible!

Interested in being featured here? Contact us to learn about sponsorship opportunities.

🙏 Other Ways to Support

Can’t sponsor but still want to help? Here are other ways to contribute:

• 💻 Contribute Code — Join our development efforts on GitHub
• 📝 Share Knowledge — Write documentation, blog posts, or case studies
• 🗣️ Spread the Word — Share AIBOM in your networks and communities
• 🧪 Test & Feedback — Help us improve by testing tools and providing feedback
• 🎓 Educate Others — Host workshops or training sessions in your organization

Together, we’re building a more transparent and secure AI ecosystem! 🚀

📅 Meetings & Events

Join us in shaping the future of AI transparency through community meetings and industry events.

🎥 Community Meetings

Stay engaged with the OWASP AIBOM community through our regular meetings and discussions.

Meeting Series

We host regular community meetings where we discuss project updates, technical developments, and collaboration opportunities.

• 📺 YouTube Channel — Watch past meetings and subscribe for updates
  OWASP AIBOM YouTube Channel

• 📋 Meeting Schedule — Join our upcoming sessions

  • Frequency: Regular virtual meetings (schedule announced on Slack)
  • Format: Open community discussions, technical deep-dives, and working group sessions
  • Access: Free and open to all community members

How to Participate

1. 💬 Join OWASP Slack - Get meeting notifications in #project-aibom-community
2. ⭐ Subscribe on YouTube - Never miss a recording or live session
3. 📧 Sign Up - Fill out the project membership form to receive invites

🎤 Upcoming Events

Join us at industry conferences and community events where we’re presenting OWASP AIBOM.

Featured Events

🏛️ OWASP DC (Washington DC)

OWASP AI Bill of Materials: Bringing Transparency to AI Supply Chains

• 📍 Location: Washington DC
• 📅 Date: To be announced
• 🎯 Topics:
  • Introduction to AIBOM framework
  • AI supply chain transparency
  • Regulatory compliance and governance
  • Live demonstrations and Q&A

🔗 More details coming soon!

Past Events

Stay tuned for updates on past presentations and recordings.

📢 Speaking Opportunities

Interested in having OWASP AIBOM present at your event or conference?

Contact us:
📧 [email protected]

We welcome opportunities to:

• Present at conferences and industry events
• Host workshops and training sessions
• Participate in panel discussions
• Collaborate with other communities

🌍 Community Engagement

Stay Updated

• 💬 Slack Channel - #project-aibom-community
• 📺 YouTube - @OWASPAIBOM
• 🌐 LinkedIn - Follow our updates
• 📧 Mailing List - Subscribe for announcements

Get Involved

• 🗣️ Attend Meetings - Participate in community discussions
• 🎥 Watch Recordings - Catch up on past sessions
• 📝 Share Ideas - Contribute to meeting agendas
• 🤝 Collaborate - Join working groups and initiatives

Together, we’re building the future of AI transparency and security! 🚀

🚀 AIBOM Workstreams

Collaborative initiatives driving the development and adoption of AI transparency standards.

📖 Overview

The OWASP AIBOM project is organized into 10 strategic workstreams, each focused on a critical aspect of AI transparency and security. These workstreams enable focused collaboration, expertise sharing, and measurable progress toward our mission.

Get involved! Join a workstream that matches your interests and expertise.

🎯 Active Workstreams

1️⃣ Pre-requisites

Defining the Foundation

Establishing the baseline requirements and dependencies needed for successful AIBOM implementation.

Focus Areas:

• Infrastructure and technical requirements
• Organizational readiness assessments
• Skill and knowledge prerequisites
• Environmental and platform dependencies

Current Status: 🟢 Active
Join: #project-aibom-prerequisites

2️⃣ Foundational Best Practices / Operational Guide

Building the Playbook

Creating comprehensive operational guidelines and best practices for AIBOM adoption and implementation.

Focus Areas:

• Step-by-step implementation guides
• Operational workflows and processes
• Integration patterns and strategies
• Common pitfalls and solutions

Current Status: 🟢 Active
Join: #project-aibom-best-practices

3️⃣ Formats

Standardizing the Structure

Developing and maintaining standard formats for AI Bill of Materials documentation.

Focus Areas:

• AIBOM schema design and evolution
• Format specifications (JSON, XML, YAML)
• Versioning and compatibility
• Interoperability standards

Current Status: 🟢 Active
Join: #project-aibom-formats

4️⃣ Tools

Building the Ecosystem

Creating and maintaining tools to generate, validate, and analyze AIBOMs.

Focus Areas:

• AIBOM generation tools
• Validation and verification utilities
• Analysis and visualization platforms
• Integration with existing DevOps/MLOps tools

Current Status: 🟢 Active
Join: #project-aibom-tools

5️⃣ Sponsorship

Sustaining the Mission

Developing partnerships and securing resources to support project growth and sustainability.

Focus Areas:

• Partnership development
• Funding and resource allocation
• Sponsor engagement and recognition
• Value proposition articulation

Current Status: 🟢 Active
Join: #project-aibom-sponsorship

6️⃣ Integrity/Quality

Ensuring Excellence

Establishing quality standards and integrity measures for AIBOM data and processes.

Focus Areas:

• Data quality standards
• Validation and verification frameworks
• Trust and attestation mechanisms
• Audit and compliance procedures

Current Status: 🟢 Active
Join: #project-aibom-integrity

7️⃣ Policy

Shaping Governance

Engaging with regulatory bodies and developing policy recommendations for AIBOM adoption.

Focus Areas:

• Regulatory compliance mapping
• Policy recommendations and advocacy
• Legal and compliance frameworks
• Industry standards alignment

Current Status: 🟢 Active
Join: #project-aibom-policy

8️⃣ Content

Creating Knowledge

Producing educational materials, documentation, and resources for the AIBOM community.

Focus Areas:

• Documentation and guides
• Training materials and courses
• Case studies and success stories
• Blog posts and articles

Current Status: 🟢 Active
Join: #project-aibom-content

9️⃣ Alliances (Collaboration)

Building Partnerships

Establishing and nurturing strategic partnerships with other organizations, projects, and communities.

Focus Areas:

• Cross-project collaboration
• Industry partnerships
• Academic and research partnerships
• Standards body engagement

Current Status: 🟢 Active
Join: #project-aibom-alliances

🔟 Engagement (Promotion)

Amplifying Impact

Promoting AIBOM adoption through marketing, outreach, and community engagement activities.

Focus Areas:

• Marketing and communications
• Event participation and speaking
• Social media and digital presence
• Community growth initiatives

Current Status: 🟢 Active
Join: #project-aibom-engagement

🤝 How to Join a Workstream

Getting involved is easy! Follow these steps:

Step 1: Join OWASP Slack

Connect with the community on OWASP Slack in the #project-aibom-community channel.

Step 2: Introduce Yourself

Share your background, interests, and which workstream(s) you’d like to join.

Step 3: Attend Meetings

Each workstream has regular meetings. Check the schedule in Slack or on our Events page.

Step 4: Start Contributing

Jump into discussions, pick up tasks, and collaborate with your workstream team!

📊 Workstream Coordination

Leadership Structure

Each workstream has:

• 👤 Workstream Lead — Coordinates activities and progress
• 👥 Core Contributors — Active members driving initiatives
• 🌐 Community Members — All participants and supporters

Communication Channels

• 💬 Slack Channels — Day-to-day discussions and updates
• 📹 Regular Meetings — Virtual sessions for deep collaboration
• 📝 GitHub Issues — Task tracking and project management
• 📧 Mailing Lists — Important announcements

Progress Tracking

We track workstream progress through:

• ✅ Milestone achievements
• 📈 Quarterly reports
• 🎯 Roadmap alignment
• 🏆 Success metrics

🎯 Workstream Goals & Milestones

Stay tuned for detailed roadmaps and milestones for each workstream!

Want to propose a new workstream? Contact the project leadership team with your ideas.

📞 Get Involved

Ready to contribute?

1. 💬 Join OWASP Slack — #project-aibom-community
2. 📋 Fill out the Project Membership Form
3. 📧 Contact us at [email protected]

Every workstream contribution moves us closer to a transparent and secure AI ecosystem! 🌟