What is a Software Bill of Materials (SBOM)?

A Software Bill of Materials (SBOM) is a comprehensive, machine-readable inventory of all components, libraries, and dependencies used in a software application. It includes version information, licenses, and relationships between components, essential for security, compliance, and supply chain management.

What SBOM formats does this visualizer support?

The Prismor SBOM Visualizer supports two industry-standard formats: SPDX 2.3 (Software Package Data Exchange) and CycloneDX, both in JSON format. These are the most widely used SBOM formats for EU CRA compliance and software supply chain security.

How do I learn about EU CRA SBOM requirements?

Visit our comprehensive EU CRA SBOM compliance guide at https://prismor.dev/compliance which includes downloadable SPDX 2.3 templates, field mappings, and complete implementation guidance for meeting European Cyber Resilience Act requirements.

SBOM Visualizer

Upload your Software Bill of Materials (SBOM) in SPDX or CycloneDX format to visualize component distributions, ecosystem breakdowns, and metadata.

Upload Your SBOM

Drag & drop or click to upload SPDX or CycloneDX JSON file

Choose File

Sample SBOM guidance:

View our complete implementation guide with downloadable SPDX 2.3 JSON samples and field mappings.

What is an SBOM?

A Software Bill of Materials (SBOM) is a comprehensive inventory of all components, libraries, and dependencies in your software. It's essential for security, compliance, and supply chain management.

Supported Formats:

CycloneDX (JSON)
SPDX (JSON)

Visualizations:

Ecosystem distribution (npm, pip, go, etc.)
Component type breakdown
License analysis
Detailed component inventory