Cloudsmith this week at the KubeCon + CloudNativeCon Europe conference revealed it has added an ability to enrich packages with threat intelligence that enables DevSecOps teams to better evaluate the risk attached to downloading a software component. Nigel Douglas, head of developer relations for Cloudsmith, said this extension to the managed service it provides for […]
The EU’s Cyber Resilience Act: Redefining Secure Software Development
The European Union’s Cyber Resilience Act (CRA) marks a turning point for anyone building, selling, or maintaining digital products. Whether it’s enterprise software, consumer apps, IoT devices, or embedded systems, the CRA sets rigorous cybersecurity requirements that apply throughout a product’s entire lifecycle, from design and development to deployment, maintenance, and secure decommissioning. At its […]
Eclipse Foundation Publishes Toolkit to Simplify CRA Compliance
The Eclipse Foundation has launched the OCCTET project, offering open-source compliance tools to help smaller organizations meet the EU’s new Cyber Resilience Act requirements.
Ready or Not: U.S. Tech Companies Must Be Ready for EU Accessibility Compliance Rules
On June 28, 2025, the European Union’s Accessibility Act (EAA) will take effect, and the ripple effects will be felt far beyond Europe’s borders. U.S. companies that do business in Europe or serve European customers online must comply, or risk facing steep penalties, reputational damage and lost revenue.
EU Adopts European Sustainability Reporting Standards (ESRS): What are the implications for Tech and IT?
The European Commission’s recent announcement on July 31st marks a major turning point for sustainability reporting in the European Union. The adoption of the European Sustainability Reporting Standards (ESRS) is set to reshape how companies report their sustainability practices and impacts. This new directive will have far-reaching implications, especially for tech and IT companies that […]