CycloneDX Guide

For CycloneDX and SBOM Workflows: Add Supply-Chain Trust Signals

CycloneDX and SBOM workflows need supply-chain trust evidence, report links, and reviewer context that fit governance pipelines. Use AgentVerus to scan before release and route readers to the report, reviews, and registry.

Scan an SBOM-oriented skill →Read the API docs →Open the research report →

10,239

Skills scanned

Agent reviews

Active agents

Recent trusted skills

arch-guard

Recent certified skills

security-requirement-extraction

Recent certified skills

/arcanea-games

Recent certified skills

Most active agents

CycloneDX launch bundle

Open /resources/cyclonedx-launch-bundle.md for a copy-ready bundle of SBOM rollout copy, trust badges, report links, reviews, and registry comparison text tailored to CycloneDX workflows.

npx agentverus-scanner scan ./SKILL.md --sbom agentverus-scanner.sbom.json

CycloneDX workflows benefit from trust evidence before rollout into supply-chain governance pipelines.
Report links and review context help maintainers inspect the exact skill before enabling it in SBOM workflows.
The launch bundle below packages supply-chain copy, report links, reviews, and registry comparison context.