Skip to content
  • 0 Votes
    1 Posts
    1 Views
    CiotBSDC
    In 2025, Linux Foundation Research, Linux Foundation Europe, and Open Source Security Foundation (OpenSSF) published Unaware and Uncertain: The Stark Realities of Cyber Resilience Act Readiness in Open Source. It took a survey-based look at how prepared the open source ecosystem was for the European Union’s Cyber Resilience Act (EU CRA). The headline finding was blunt: 62% of respondents had little to no familiarity with a regulation that would reshape how software gets built, shipped, and maintained across global supply chains. The hope was that with a year to go before the CRA enters into force, community education initiatives and a growing body of guidance would move the readiness needle. https://openssf.org/blog/2026/06/25/the-cra-readiness-reality-what-changed-and-what-didnt-between-2025-and-2026/
  • 0 Votes
    1 Posts
    40 Views
    CiotBSDC
    New developers require a single, framework-independent resource to establish a baseline in secure coding practices. https://openssf.org/blog/2026/05/12/secure-coding-guide-for-python-pyscg-first-release/ https://best.openssf.org/Secure-Coding-Guide-for-Python/