Learn / AI Bill of Materials

What is an AI-BOM?

An AI Bill of Materials is a structured inventory of every model, dataset, tool, prompt asset, and dependency used by a production AI system. Auditors ask for it; AI-SPM produces it as a continuous artefact.

Last reviewed June 2026

Problem

The gap AI Bill of Materials closes

AI systems compose more dependencies than traditional applications: foundation models with versions and providers, fine-tuned variants, embeddings, vector stores, RAG corpora, tools and MCP servers, prompt templates, evaluation datasets. Reconstructing this composition for an audit at incident time is too late.

How Penaxtra approaches it

How Penaxtra delivers AI Bill of Materials

Treat the AI-BOM as a first-class artefact, generated continuously from the same inventory that drives runtime policy. AI-SPM emits the AI-BOM in JSON and PDF, every scan run, with a stable schema and version field.

Technical capabilities

AI Bill of Materials capabilities

Models: foundation model identifier (provider + family + version), fine-tunes (base model + dataset hash + training timestamp), self-hosted weights (binary hash + license)

.

Datasets: RAG corpora (source registry + last-indexed timestamp + sensitivity), evaluation sets, training/fine-tune datasets where customer-owned

.

Tools and MCP servers: tool ID, scope, transport, owning team, last-reviewed date

.

Prompt assets: system prompt registry (template ID + version + last-modified), prompt gateways

.

Dependencies: vector store engine and version, embedding model and version, retrieval pipeline components

.

Provenance: who declared each entry, when it was last verified, what scan run produced it

.

Compliance mapping

AI Bill of Materials compliance mapping

EU AI Act Article 11 (technical documentation, Annex IV), ISO/IEC 42001 A.6.2 (resources), NIST AI 600-1 (GOVERN 1.4 inventory, MAP 1.5 third-party). NIST SP 800-218A maps the AI-BOM concept onto the existing SBOM practice (SSDF PO.5).

FAQ

Frequently asked

How does an AI-BOM differ from a traditional SBOM?

An SBOM lists software components and licenses. An AI-BOM extends that to model artefacts (foundation, fine-tune, weights), training and retrieval datasets, prompt assets, tools, and runtime dependencies that influence model output. The schemas are complementary, not competing.

Is there a public AI-BOM standard?

No single standard yet. NIST AI 600-1 and ISO/IEC 42001 require an inventory but do not prescribe schema. CycloneDX (industry consortium) has a draft AI/ML extension that AI-SPM tracks. The AI-BOM exported by Penaxtra is JSON Schema-validated and versioned so consumers can pin a shape.

Who owns the AI-BOM internally?

Typically the AI platform team produces it, the security team reviews it, and the GRC team submits it to auditors. AI-SPM generates the artefact continuously and assigns review owners per asset class.

Related

Explore further

AI Asset Inventory platform capability AI Bill of Materials (glossary) EU AI Act compliance mapping

Request a demo

Scoped walkthrough of the Learn / AI Bill of Materials surface against your environment. No credit card.

Request a demo Explore AI-SPM platform