diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index f603df34..c8d0e399 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -44,6 +44,11 @@ jobs:
       - name: Print supported platforms
         run: go tool dist list
 
+      - name: Install syft
+        run: |
+          curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin
+          syft version
+
       - name: Set ui_file
         id: vars
         run: |
@@ -70,4 +75,11 @@ jobs:
           UI_SEPARATOR: "--------UI--------"
           UI_FILE: ${{ steps.vars.outputs.ui_file }}
           # Your GoReleaser Pro key, if you are using the 'goreleaser-pro' distribution
-          # GORELEASER_KEY: ${{ secrets.GORELEASER_KEY }}
\ No newline at end of file
+          # GORELEASER_KEY: ${{ secrets.GORELEASER_KEY }}
+
+      - name: Generate SBOM
+        uses: anchore/sbom-action@v0
+        with:
+          path: .
+          artifact-name: sbom.spdx
+          upload-artifact-retention: 14
diff --git a/.goreleaser.yaml b/.goreleaser.yaml
index 10654992..fc9366dd 100644
--- a/.goreleaser.yaml
+++ b/.goreleaser.yaml
@@ -49,4 +49,4 @@ changelog:
   filters:
     exclude:
       - '^docs:'
-      - '^test:'
+      - '^test:'
\ No newline at end of file