As many of you know, the EU’s new Cyber Resilience Act is coming into full force next year (though partially applying already from September this year). The tl:dr for any of us using Claude Code/Codex and others is that before shipping we attest we comply with the law, which means amongst other things that i) we ensure that even our AI coded software follows the laws secure by design principles and that (ii) we patch vulnerabilities, and iii) inform authorities of certain vulnerabilities. Failure to comply can result in pretty significant fines. How are you all planning on complying? Are there any community efforts on-going to help all us vibe-coders? If so, would love to contribute. submitted by /u/oniiranen
Originally posted by u/oniiranen on r/ClaudeCode
You must log in or # to comment.