Amp now provides a comprehensive Software Bill of Materials (SBOM) that catalogs all open source dependencies used. The SBOM follows the CycloneDX 1.6 specification and is compatible with security scanning tools and vulnerability databases. It's automatically generated during our build process and updated with each release.
What's included:
- Component names, versions, and licenses
- Repository URLs and package identifiers
- Dependency relationships and metadata
- 575+ open source components catalogued
Access the Bill of Materials at /bom.json or learn more in the Amp Security Reference.