A comprehensive, nested list of all software components, libraries, and dependencies used within a product.
Under the Cyber Resilience Act, manufacturers must maintain an SBOM to track and manage potential security vulnerabilities across their product's supply chain.
Read official docs
Glossary
The CRA is Regulation EU 2024/2847 and mandates cybersecurity requirements for networked products, including entertainment lighting nodes and gateways.
Security by Design and Security by Default are CRA requirements that embed cybersecurity into development and ship products in the most secure configuration.
ENISA is the agency responsible for high-level cybersecurity across the EU.