A **Software Bill of Materials** (SBOM) is an entity within the [[Foundation (CSDM domain)|Foundation domain]] of the [[Common Service Data Model|Common Service Data Model]] (CSDM), a reference architecture developed by [[ServiceNow|ServiceNow]] that provides prescriptive guidance on service-related definitions and data modeling within the ServiceNow AI Platform. An SBOM represents a detailed inventory of all components that make up a piece of software, serving as a core element for [[Security Operations (ServiceNow)|Security Operations]] and the tracking of potential vulnerabilities within an organization's operations. SBOMs are a new addition to CSDM 5 and the data model is available on the ServiceNow Store as SBOM Core (sn_sbom_core). The SBOM capability identifies layered components of software using [[Product Model (CSDM)|Product Models]], making it critical for understanding the details of installed software and for vulnerability management through Software Security Vulnerability Response. While currently focused on [[Service Delivery (CSDM domain)|Service Delivery]], the concept of SBOM or bill of materials (BOM) is expanding within ServiceNow for use in the [[Design & Planning (CSDM domain)|Design & Planning]] and [[Build & Integration (CSDM domain)|Build & Integration]] stages of the [[CSDM Service Life Cycle|CSDM Service Life Cycle]], supporting end-to-end visibility of software composition from design through operational deployment.