Summary
Generates Software Bill of Materials in CycloneDX 1.6 and SPDX 2.3 formats, addressing requirements from Executive Order 14028, NIS2, and the EU Cyber Resilience Act. Useful when you need to document dependencies for compliance audits, security assessments, or regulatory submissions. The server validates SBOM structure and exports standardized manifests that procurement and security teams expect. Installs via pip and runs over stdio transport. Part of MEOK AI Labs' compliance-focused tooling, so expect additional EU AI Act oriented features bundled in. Reach for this when you're dealing with government contracts, regulated industries, or supply chain transparency requirements where machine-readable dependency declarations are mandatory.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Sbom Cyclonedx MCP
SBOM generation in CycloneDX 1
SBOM generation in CycloneDX 1.6 + SPDX 2.3. Required by EO 14028, NIS2, CRA. MIT
🚀 Quick Start
# Install via pip
pip install sbom_cyclonedx_mcp
# Or install via Smithery
npx -y @smithery/cli@latest install sbom-cyclonedx-mcp --client claude
✨ Features
- MCP protocol compliant
- Easy installation
- Well-documented API
- Production-ready
- Active maintenance
📖 Documentation
🛡️ Compliance
This MCP server is built with EU AI Act compliance built-in:
-
Free: 10 calls/day. No API key required.
-
Pro £79/mo: unlimited + signed attestations. Subscribe
-
Enterprise £1,499/mo: white-label + on-premise + SLA. hello@meok.ai
-
✅ Article 9 — Risk Management System
-
✅ Article 13 — Transparency & Instructions for Use
-
✅ Article 15 — Bias Detection & Testing
-
✅ Article 26 — FRIA Support (where applicable)
-
✅ Article 50 — AI Content Watermarking (where applicable)
Need help getting compliant? Book a free 15-min diagnostic →
🏢 Enterprise
Need custom development, SLA guarantees, or white-label deployment?
- Pro: $99/mo — Full MCP suite + EU AI Act tracking
- Enterprise: $499/mo — Custom dev + SLA + Dedicated support
View Pricing → | Contact Sales →
🤝 Part of the MEOK Ecosystem
This server is part of the MEOK AI Labs ecosystem — 300+ MCP servers for sovereign AI governance.
| Domain | Purpose |
|---|---|
| councilof.ai | EU AI Act compliance marketplace |
| safetyof.ai | AI safety & monitoring |
| meok.ai | Sovereign AI platform |
| cobolbridge.ai | Legacy modernization |
📜 License
MIT © CSOAI-ORG
Built with 💜 by MEOK AI Labs · UK Companies House 16939677
**Agent interop protocols supported (8 live):**- ✅ MCP (Anthropic) — native
- ✅ A2A (Google + Linux Foundation, absorbed IBM ACP Sept 2025)
- ✅ IBM ACP — covered via A2A merge
- ◐ Stripe ACP (Agentic Commerce Protocol) — Q3 bridge via agent-commerce-protocol-mcp
- ◐ AP2 (Google Agent Payments) — partial via agent-commerce-payments-mcp
- ◐ x402 (Coinbase HTTP 402) — partial via api.meok.ai gateway
- → OASF / AGNTCY (Cisco Outshift + Linux Foundation) — Q3 bridge
- 👁 ANP (Cisco Agent Network) — watch-list
Pricing options:
| Option | Price | Best for |
|---|---|---|
| Self-host (this MCP) | £0 — MIT | Devs |
| This MCP Starter | £29/mo | One-MCP teams |
| This MCP Pro | £79/mo | Production + 24h SLA |
| Universal PAYG | £29/mo + £0.0002/call | Spiky usage across many MCPs |
| Substrate bundle (this category) | £99-£499/mo | A whole pack |
| MEOK Universe | £1,499/mo | All 47 MCPs, 500K calls |
Each tier above the free self-host adds HMAC-signed attestations verifiable at
verify.meok.ai. Linux Foundation governance on the A2A spine means EU regulated
buyers can deploy without vendor-lock-in objections.
💸 Try MEOK in 30 seconds — instant buy ladder
| Tier | Price | What you get | Stripe |
|---|---|---|---|
| Smoke test | £1 | Signed sample MCP-Hardening report + Article 50 PDF | https://buy.stripe.com/aFa7sNcgAdQS0ZT1Uc8k91t |
| Quick Kit | £9 | EU AI Act Article 50 implementation guide (C2PA + EU-Icon) | https://buy.stripe.com/aFa7sNcgAdQS0ZT1Uc8k91t |
| Founder Call | £29 | 30-min 1-on-1 with the founder | https://buy.stripe.com/aFa7sNcgAdQS0ZT1Uc8k91t |
Refundable. UK Stripe — VAT-clean. Builds on the 81-MCP MEOK fleet. Verify any signed report at https://meok.ai/verify.
Configuration
Add to your claude_desktop_config.json (Claude Desktop) or your MCP client config:
{
"mcpServers": {
"sbom-cyclonedx-mcp": {
"command": "uvx",
"args": ["sbom-cyclonedx-mcp"]
}
}
}
Or: pip install sbom-cyclonedx-mcp then run the sbom-cyclonedx-mcp command (stdio transport).
Examples
Once configured, ask your assistant, for example:
- "Use
generate_sbom_cyclonedxto …" - "Use
generate_sbom_spdxto …" - "Use
validate_sbomto …"
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →