Cyber Resilience Attestations

Cyber Resilience Attestations provides a comprehensive set of recommendations regarding voluntary security attestations for open source projects, as described in CRA Article 25, including but not limited to:<ul><li>the nature and structure of the contents of attestations</li><li>recommended procedures to create, disseminate, and authenticate attestations</li><li>comparative analysis of different approaches to addressing the objective</li></ul>This project may include: <ul><li>synchronous and asynchronous discussions on this topic, minutes and agendas of meetings, etc</li><li>descriptions of processes and reference templates that support the creation of voluntary security attestation documents</li><li>comparative review of existing 3rd party materials related to the topic</li><li>samples and document templates</li><li>automation for auto-publishing documents from markdown into other formats</li></ul>

Basics

Repositories

Repository	Commits	Reviews	Issues

This project has no activity.

The EMO oversees the lifecycle of Eclipse projects, trademark and IP management, and provides a governance framework and recommendations on open source best practices.

See the project’s PMI page at https://projects.eclipse.org/projects/technology.cra-attestations

Releases

Reviews

Creation (2025-10-01) – see review

IP Lab requests

Security related information is not yet available for this project. In order to gather such information automatically, Self Service of GitHub resources needs to be enabled for this project.