AI-BOM evidence that survives review.
SIGIL inventories local model artefacts, verifies digests, detects license metadata, and emits synchronized JSON and Markdown that a reviewer can attach to an audit ticket.
AI Security / Local AI-BOM / Offensive Research
SIGIL turns local AI runtimes, model stores, native binaries, and policy into deterministic evidence. Inspect what is running, where it is exposed, and why a system earns PASS, WARN, or FAIL.
$ sigil aibom generate --runtime ollama
[ai] reading local model manifests...
[sec] classifying runtime exposure...
[dev] mapping native capability evidence...
[ok] report sealed as schema 1.1.
Platform
SIGIL inventories local model artefacts, verifies digests, detects license metadata, and emits synchronized JSON and Markdown that a reviewer can attach to an audit ticket.
Ollama endpoints and Linux listener state are classified in place: localhost, LAN, public bind, docker-published, reverse proxy, or unavailable.
PASS, WARN, and FAIL come from deterministic analyzers and YAML policy. No cloud call and no LLM sits in the verdict path.
Research DNA
SIGIL treats a local AI deployment as an attack surface: model provenance, runtime exposure, native capability evidence, and policy all matter together. The result is security software that feels sharp, calm, and usable under pressure.
Tools
Walk Ollama model stores, runtime settings, and observed binds into one security picture.
Evaluate native binary capabilities and runtime evidence against explicit policy instead of opaque scoring.
Generate schema-stable AI-BOM JSON, Markdown reports, and a browser viewer that runs fully client-side.
Live Artefacts
Load sample PASS, WARN, and FAIL reports in the browser with no upload path.
CompareCompare against Anchore Syft, vendor built-ins, and OWASP AIBOM Generator.
ReportThe 2026 H1 report captures where local AI audit evidence is still missing.
Start
Run SIGIL locally, inspect the emitted evidence, and wire the report into your review workflow.