Overview
Severity: MEDIUM | Affected: EU AI Office | Category: policy
The European Union's AI Office has announced a significant update to the AI Act's implementation guidelines, introducing a mandatory 'AI Bill of Materials' (AIBOM) for all high-risk AI systems deployed within the EU. Effective January 2026, developers will be required to provide a detailed manifest of all data sources, open-source libraries, pre-trained models, and other components used in their systems. This aims to increase transparency and address supply chain vulnerabilities. Furthermore, the new policy mandates compulsory, independent third-party audits for these systems before they can be placed on the market. These audits will assess robustness, security, and compliance with EU data protection and safety standards. The move is seen as a major step towards creating a more accountable and secure AI ecosystem, though some industry groups have raised concerns about the operational burden.