Watch Mario Fahlandt's talk at Cloud Native Summit Munich 2025
The clock is ticking. With the vulnerability reporting deadline in Q3 2026, and the full weight of the Cyber Resilience Act hitting in December 2027. That’s less time than you think to prepare for a seismic shift in digital product security.
Are you ready for the CRA? Spoiler: Most aren’t.
According to a Linux Foundation Survey, 62% of companies have low familiarity with the requirements. Don’t get caught flat-footed. “CYA before CRA” isn’t just a catchy phrase – it’s your survival strategy.
Let’s explore how Open Source already can help you to proactively assess and mitigate risks with tools for SBOM generation and threat detection. How you can use the same tooling OSS is using to identify vulnerabilities before they become compliance nightmares. Learn to turn compliance into a competitive advantage by demonstrating your commitment to security and Open Source. This is an opportunity for companies and the OSS community to unite and address the CRA’s challenges collaboratively.
Speaker: Mario Fahlandt, Customer Delivery Architect at Kubermatic
