diff --git a/.github/workflows/microsoft-sbom.yml b/.github/workflows/microsoft-sbom.yml
new file mode 100644
index 0000000000..eacddbcce6
--- /dev/null
+++ b/.github/workflows/microsoft-sbom.yml
@@ -0,0 +1,34 @@
+name: "Microsft SBOM"
+on:
+  push:
+    branches: [ "1.7.42.3_release" ]
+  pull_request:
+    branches: [ "1.7.42.3_release" ]
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v3
+
+    - name: Installing SBOM
+      run: |
+        curl -Lo $RUNNER_TEMP/sbom-tool https://github.com/microsoft/sbom-tool/releases/latest/download/sbom-tool-linux-x64
+        chmod +x $RUNNER_TEMP/sbom-tool
+
+    - name: Generate SBOM
+      run: |
+        mkdir SBOMOUTPUT
+        $RUNNER_TEMP/sbom-tool generate -b SBOMOUTPUT/ -bc . -pn ${{ github.repository }} -pv 1.7.42.3 -ps wipro -nsb https://github.com/apache/kafka
+
+    - name: Upload SBOM artifact
+      uses: actions/upload-artifact@v3
+      with:
+        name: sbom
+        path: SBOMOUTPUT/_manifest/spdx_2.2/manifest.spdx.json