Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[open-regulatory-compliance] Should ORC issue a statement encouraging ENISA to get more involved in CVE management?

Hi all,

Following the CVE database defunding (and then refunding) and our CRA Monday on the topic earlier this week, there were suggestions that ORC should issue a statement encouraging ENISA to get more involved in CVE management. My understanding is that such a statement coming from the open source community and through a European-based entity could be impactful, in particular, in light of the ongoing consultation on the Cyber Security Act and its focus on ENISA.

Is there an appetite for creating such a statement? If so please let me know and I'll set something up.

Best,

--tobie

---
Tobie Langel
Tech Lead ORC WG, Eclipse Foundation
Principal, UnlockOpen

Back to the top