A manuscript titled “ICSBoM: Automated ICS Firmware Supply Chain Vulnerability Analysis” was prepared for submission to the 32nd ACM Conference on Computer and Communications Security (CCS 2025). The ICSBoM approach analyzes embedded software in industrial control system (ICS) firmware, identifies hidden components, and detects known vulnerabilities. This effort highlights the importance of automated methods to enhance resilience against supply chain threats in critical power infrastructure.