Open-source software vs. the proposed Cyber Resilience Act (NLnet Labs)

Those laws will essentially force IT actors to consolidate around consortiums and distributions. And, they probably spell the end of DIY containers with random software versions as a viable commercial product. You will have to restrict yourself to a BOM someone else checked if you don’t want or can not afford to pay for the checking yourself.