CISA draft SBOM minimum elements for public comment
Public Sector Action
Summary
Hide ▲
Show ▼
CISA released a draft SBOM Minimum Elements guide for public comment, setting an updated baseline for software-component documentation. The draft adds items such as component hash, license, tool name, and generation context to reflect more mature SBOM practices. The comment period closes October 3, 2025, and the revision is intended to help organizations make risk-informed software-supply-chain decisions.
Related Happenings
Joint government SBOM guidance Released new guidance on the advantages of widespread SBOM adoption for Published on **2025-09-04** for software ecosystem stakeholders
Public Sector Action
First: 04.09.2025 13:37
Last: 04.09.2025 13:37
Sources 1
About this happening:
Government agencies in the **US and 14 allied countries** released new **SBOM guidance** to improve **software supply-chain transparency** and speed **vulnerability management** a...
Joint government SBOM guidance Released new guidance on the advantages of widespread SBOM adoption for Published on **2025-09-04** for software ecosystem stakeholders
Public Sector ActionAbout this happening: Government agencies in the **US and 14 allied countries** released new **SBOM guidance** to improve **software supply-chain transparency** and speed **vulnerability management** a...
CISA, NSA and partners release SBOM cybersecurity guide
Public Sector Action
First: 03.09.2025 15:00
Last: 03.09.2025 15:00
Sources 1
About this happening:
**CISA**, **NSA**, and **19 international partners** released a **joint SBOM guide** that advances **software supply chain transparency** and risk reduction. The guidance gives **...
CISA, NSA and partners release SBOM cybersecurity guide
Public Sector ActionAbout this happening: **CISA**, **NSA**, and **19 international partners** released a **joint SBOM guide** that advances **software supply chain transparency** and risk reduction. The guidance gives **...
CISA 2025 SBOM guideline update for federal agencies
Public Sector Action
First: 28.08.2025 18:17
Last: 28.08.2025 18:17
Sources 1
About this happening:
CISA has **released a 2025 update** to **federal SBOM guidelines**, and the draft is **open for public comment through Oct. 3**. The changes require **component hashes**, licenses...
CISA 2025 SBOM guideline update for federal agencies
Public Sector ActionAbout this happening: CISA has **released a 2025 update** to **federal SBOM guidelines**, and the draft is **open for public comment through Oct. 3**. The changes require **component hashes**, licenses...
Timeline
-
22.08.2025 15:00 1 articles · 9mo ago
CISA drafts updated SBOM minimum elements for public comment
Legal Policy Action UpdateCISA released a draft 2025 Minimum Elements for a Software Bill of Materials (SBOM) for public comment, updating the baseline for software-component documentation and sharing to reflect improved SBOM tooling and broader adoption since the 2021 NTIA guidance. The draft adds component hash, license, tool name, and generation context, and the public comment period closes on October 3, 2025 before CISA issues a revised version.
Show sources
- CISA Issues Draft Software Bill of Materials Guide for Public Comment — www.cisa.gov — 22.08.2025 15:00