Scope
Cyber Resilience Attestations provides a comprehensive set of recommendations regarding voluntary security attestations for open source projects, as described in CRA Article 25, including but not limited to:
- the nature and structure of the contents of attestations
- recommended procedures to create, disseminate, and authenticate attestations
- comparative analysis of different approaches to addressing the objective
This project may include:
- synchronous and asynchronous discussions on this topic, minutes and agendas of meetings, etc
- descriptions of processes and reference templates that support the creation of voluntary security attestation documents
- comparative review of existing 3rd party materials related to the topic
- samples and document templates
- automation for auto-publishing documents from markdown into other formats
Releases
| Name | Date |
|---|
Reviews
| Name | Date |
|---|---|
| Creation Review | 2025-10-01 |