The recommendation OSI made for changing the Cyber Resilience Act has been accepted and implemented. This time last year OSI recommended that the CRA:
…exclude all activities prior to commercial deployment of the software and … clearly ensure that responsibility for CE marks does not rest with any actor who is not a direct commercial beneficiary of deployment.
OSI is very grateful to the various experts who took the time to listen.
More here: The European regulators listened to the Open Source communities! - Voices of Open Source