Open Source and the Cyber Resilience Act

As written, the Cyber Resilience Act poses unnecessary economic and technological risks to the European Union.

Open Letter to the European Commission


Leading European open source software organizations have signed an open letter to the European Commission.

September 21, 2023 - As the European Union is about to initiate negotiations between co-legislators on the Cyber Resilience Act (CRA), organisations and contributors to leading European open source software (OSS) are expressing concerns about the consequences of the proposed CRA, and misconceptions throughout the EU legislative process.

Read the Open Letter

Join the Campaign to Modify the CRA


It's important to stay informed about open source policy. Follow the latest news at #ModifytheCRA and ensure your colleagues, peers, and organizations are aware of the impact.

You can also share your ideas on how to modify the CRA for open source. To get you started, we have prepared some sample posts.


Learn More About the Cyber Resilience Act's Potential Impact on Technological Development in the EU


Additional Eclipse Foundation Resources on the CRA