This article is within the scope of WikiProject Software, a collaborative effort to improve the coverage of software on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.SoftwareWikipedia:WikiProject SoftwareTemplate:WikiProject Softwaresoftware articles
This article is within the scope of WikiProject Computer science, a collaborative effort to improve the coverage of Computer science related articles on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Computer scienceWikipedia:WikiProject Computer scienceTemplate:WikiProject Computer scienceComputer science articles
A "software" bill of materials (BOM) is called a list of dependencies, or a list of dependent packages. The BOM terminology is widely used in supply chain, but, afaik, largely obscure in software affairs. Also, some (most?) references given in the page are actually linking back to materials that associated with regular supply chain BOMs, not software ones. While being fairly knowledgeable in both software and supply chain, I have never this term used anywhere. Not sure who came up with with page, but I believe it does not belong here. --Joannes Vermorel (talk) 13:50, 26 February 2020 (UTC)[reply]
It's certainly an issue of current interest and research. UL 2900 includes SBOM instructions. NTIA, FDA, DoD, Mitre and others are actively working on guidelines in this area for the US government. CodeCurmudgeon (talk) 16:58, 26 February 2020 (UTC)[reply]