Explore the parallels between highway driving regulations and open source compliance requirements in this 33-minute conference talk from the Linux Foundation. Learn how regulatory frameworks like the EU Cyber Resilience Act create different obligations for open source maintainers versus commercial software vendors, similar to how driving rules vary between regular drivers and commercial operators. Discover the limited but important enforceable obligations that may apply to open source projects, including secure development policies and vulnerability reporting requirements. Understand when and how these regulations might impact maintainers, and gain practical insights for making informed decisions about risk, responsibility, and collaboration with commercial software teams while avoiding unnecessary compliance burdens.

Syllabus

Navigating Compliance: What Developers Can Learn From Driving - Kadi McKean & Charlie Jones

Taught by

Linux Foundation

Reviews

Start your review of Navigating Compliance - What Developers Can Learn From Driving

AI Engineer - Learn how to integrate AI into software applications

Stuck in Tutorial Hell? Learn Backend Dev the Right Way

Taught by

Tags

Live Online Classes in Design, Coding & AI — Small Classes, Free Retakes

Navigating Compliance - What Developers Can Learn From Driving

From Regulation to Reality - Automating CRA Compliance for Default Products using the OSS Review

CRA-Ready - How to Prepare Your Open Source Project for EU Cybersecurity Regulations

How to Stay Compliant with and Take Benefits from the EU CRA - Cyber Resilience Act

Open Source Developer's Security Strategy - A Shared Vision for Compliance and Vulnerability Response

AI, Data Science & Cloud Certificates from Google, IBM & Meta Ad

6 Best CompTIA Security+ Courses and Certification Prep in 2026

6 Best Courses on CISSP in 2026

9 Best Bug Bounty Courses for 2026: Ethical Hacking, Safer Web

6 Best Cyber Threat Intelligence (CTI) Courses in 2026

6 Best Courses on Kali Linux in 2026

Never Stop Learning.