https://OpenChain-Project.github.io/OpenChain-KWG/en/tags/ai-sbom/Recent content in AI SBOM on OpenChain KWGHugoenhttps://OpenChain-Project.github.io/OpenChain-KWG/en/guide/opensource_for_enterprise/7-ai-compliance/Mon, 01 Jan 0001 00:00:00 +0000https://OpenChain-Project.github.io/OpenChain-KWG/en/guide/opensource_for_enterprise/7-ai-compliance/<div class="alert alert-success" role="alert"><div class="h4 alert-heading" role="heading">Requirements Covered in This Section</div> <p><strong>ISO/IEC 42001</strong>: §5.2 (AI Policy) · §6.1.2 (AI Risk Assessment) · §7.5 (Documentation) · §8.5 (AI Lifecycle) · §8.6 (AI Data) · §8.8 (External AI Procurement)</p> </div> <p>AI systems make extensive use of open source frameworks, pre-trained models, and open datasets. Companies that operate an open source management system (ISO/IEC 5230 · 18974) must apply open source compliance principles during the AI system development phase as well. In addition, development environments that leverage AI coding tools (GitHub Copilot, Claude Code, Cursor, etc.) require a new management framework to address license contamination and the introduction of vulnerable packages.</p>