Contents

Base models used. Fine-tuning datasets. Framework versions (transformers, torch). Preprocessing pipelines. Deployment configs.

Advertisement

Standards emerging

SPDX + CycloneDX extending. CISA advocating. No dominant standard yet.

Advertisement

Applications

Vulnerability response (which apps use vulnerable model). Regulatory reporting. Supply chain audit.

Integration

Generate at CI/CD. Store in registry. Query for incident response.