In my previous blog post on the European Cyber Resilience Act (“CRA”), I touched on a topic which I feel warrants additional discussion. Specifically: Fundamentally, the core of the proposed legislation is to extend the CE Mark regime to all products with digital elements sold in Europe. Our assumption based on the current text is that this process will be applied to open source software made avai
![Cyber Resilience Act: Good Intentions and Unintended Consequences](https://cdn-ak-scissors.b.st-hatena.com/image/square/1c60a0dbb0ebe068efcc26921f5fbbbe9154ff24/height=288;version=1;width=512/https%3A%2F%2Feclipse-foundation.blog%2Fwp-content%2Fuploads%2F2017%2F09%2Fc8a6dc4c-19f2-4e84-86c2-6e16cd4b801b.jpg%3Fw%3D200)