The PHP Foundation, alongside leading open source organizations including the Apache Software Foundation, Blender Foundation, OpenSSL Software Foundation, Python Software Foundation, Rust Foundation, and Eclipse Foundation, is excited to announce a collaborative initiative aimed at establishing common cybersecurity standards in alignment with the European Union’s Cyber Resilience Act (CRA).
This initiative, hosted by the Eclipse Foundation, will focus on creating specifications for secure software development rooted in open source best practices.
We hope that our specifications could inform the formal standardisation processes of at least one of the European Standards Organisations. Given the tight time horizon for implementation of the CRA, we believe that this immediate start will provide a constructive environment to host the technical discussions necessary for the stewards, contributors, and adopters of open source to meet the requirements set forth in these new regulations.
At The PHP Foundation, we are committed to supporting the open source community, ensuring that the PHP language and its ecosystem are prepared for the upcoming regulatory changes.
For more information, see the full announcement on the Eclipse Foundation website.