As software supply chain risks escalate globally, India has moved decisively to strengthen its regulatory posture. In recent years, two major regulatory bodies the Indian Computer Emergency Response Team (CERT-In) and the Securities and Exchange Board of India (SEBI) have issued guidelines that place the Software Bill of Materials (SBOM) at the heart of cybersecurity governance, particularly in the financial