This is the official GitHub repository for the OWASP AIBOM Generator β an open-source tool for generating AI Bills of Materials (AIBOMs) in CycloneDX format.
The tool is also listed in the official CycloneDX Tool Center.
π Try the tool live:
π https://owasp-genai-aibom.org
π Bookmark and share: https://owasp-genai-aibom.org
π OWASP AIBOM Initiative: genai.owasp.org/ai-sbom-initiative
This initiative is about making AI transparency practical. The OWASP AIBOM Generator, running under the OWASP GenAI Security Project, is focused on helping organizations understand whatβs actually inside AI models and systems, starting with open models on Hugging Face. Join OWASP GenAI Security Project - AIBOM Initiative to contribute.
- Extracts metadata from models hosted on Hugging Face π€
- Generates an AIBOM (AI Bill of Materials) in CycloneDX 1.6 JSON format
- Calculates AIBOM completeness scoring with recommendations
- Supports metadata extraction from model cards, configurations, and repository files
- Human-readable AIBOM viewer
- JSON download
- Completeness scoring & improvement tips
- API endpoints for automation
- Standards-aligned generation (CycloneDX 1.6, compatible with SPDX AI Profile)
We welcome contributions and feedback.
β‘ Log an issue:
https://github.com/aetheris-ai/aibom-generator/issues
This project is open-source and available under the Apache 2.0 License.