sbom-cyclonedx-mcp 1.0.4

Software Bill of Materials generation + validation in CycloneDX 1.6 and SPDX 2.3 formats. Required by EO 14028 + NIS2 + CRA.

Sbom Cyclonedx MCP

SBOM generation in CycloneDX 1

SBOM generation in CycloneDX 1.6 + SPDX 2.3. Required by EO 14028, NIS2, CRA. MIT

---

🚀 Quick Start

# Install via pip
pip install sbom_cyclonedx_mcp

# Or install via Smithery
npx -y @smithery/cli@latest install sbom-cyclonedx-mcp --client claude

✨ Features

• MCP protocol compliant
• Easy installation
• Well-documented API
• Production-ready
• Active maintenance

📖 Documentation

• Full Documentation
• API Reference
• EU AI Act Compliance Guide

🛡️ Compliance

This MCP server is built with EU AI Act compliance built-in:

• Free: 10 calls/day. No API key required.

• Pro £79/mo: unlimited + signed attestations. Subscribe

• Enterprise £1,499/mo: white-label + on-premise + SLA. hello@meok.ai

• ✅ Article 9 — Risk Management System

• ✅ Article 13 — Transparency & Instructions for Use

• ✅ Article 15 — Bias Detection & Testing

• ✅ Article 26 — FRIA Support (where applicable)

• ✅ Article 50 — AI Content Watermarking (where applicable)

Need help getting compliant? Book a free 15-min diagnostic →

🏢 Enterprise

Need custom development, SLA guarantees, or white-label deployment?

• Pro: $99/mo — Full MCP suite + EU AI Act tracking
• Enterprise: $499/mo — Custom dev + SLA + Dedicated support

View Pricing → | Contact Sales →

🤝 Part of the MEOK Ecosystem

This server is part of the MEOK AI Labs ecosystem — 300+ MCP servers for sovereign AI governance.

Domain	Purpose
councilof.ai	EU AI Act compliance marketplace
safetyof.ai	AI safety & monitoring
meok.ai	Sovereign AI platform
cobolbridge.ai	Legacy modernization

📜 License

MIT © CSOAI-ORG

---

_{Built with 💜 by MEOK AI Labs · UK Companies House 16939677}

**Agent interop protocols supported (8 live):**

• ✅ MCP (Anthropic) — native
• ✅ A2A (Google + Linux Foundation, absorbed IBM ACP Sept 2025)
• ✅ IBM ACP — covered via A2A merge
• ◐ Stripe ACP (Agentic Commerce Protocol) — Q3 bridge via agent-commerce-protocol-mcp
• ◐ AP2 (Google Agent Payments) — partial via agent-commerce-payments-mcp
• ◐ x402 (Coinbase HTTP 402) — partial via api.meok.ai gateway
• → OASF / AGNTCY (Cisco Outshift + Linux Foundation) — Q3 bridge
• 👁 ANP (Cisco Agent Network) — watch-list

Pricing options:

Option	Price	Best for
Self-host (this MCP)	£0 — MIT	Devs
This MCP Starter	£29/mo	One-MCP teams
This MCP Pro	£79/mo	Production + 24h SLA
Universal PAYG	£29/mo + £0.0002/call	Spiky usage across many MCPs
Substrate bundle (this category)	£99-£499/mo	A whole pack
MEOK Universe	£1,499/mo	All 47 MCPs, 500K calls

Each tier above the free self-host adds HMAC-signed attestations verifiable at verify.meok.ai. Linux Foundation governance on the A2A spine means EU regulated buyers can deploy without vendor-lock-in objections.

💸 Try MEOK in 30 seconds — instant buy ladder

Tier	Price	What you get	Stripe
Smoke test	£1	Signed sample MCP-Hardening report + Article 50 PDF	https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j
Quick Kit	£9	EU AI Act Article 50 implementation guide (C2PA + EU-Icon)	https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j
Founder Call	£29	30-min 1-on-1 with the founder	https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j

Refundable. UK Stripe — VAT-clean. Builds on the 81-MCP MEOK fleet. Verify any signed report at https://meok.ai/verify.

Configuration

Add to your claude_desktop_config.json (Claude Desktop) or your MCP client config:

{
  "mcpServers": {
    "sbom-cyclonedx-mcp": {
      "command": "uvx",
      "args": ["sbom-cyclonedx-mcp"]
    }
  }
}

Or: pip install sbom-cyclonedx-mcp then run the sbom-cyclonedx-mcp command (stdio transport).

Examples

Once configured, ask your assistant, for example:

• "Use generate_sbom_cyclonedx to …"
• "Use generate_sbom_spdx to …"
• "Use validate_sbom to …"