How to Start Contributing to ORC Deliverables

Contributing to the Open Regulatory Compliance (ORC) Working Group is one of the most effective ways to help shape how the Cyber Resilience Act (CRA) impacts the open source ecosystem. If you’re new to the group or simply wondering where to begin, the best starting point is our deliverables plan.

This plan provides a clear overview of the focus areas identified by the working group, the projects currently in progress, and the deliverables that have already been completed. It’s designed to give you both visibility into our work and an entry point to participate.

What You’ll Find in the Deliverables Plan

The deliverables plan organises our work into four main categories:

• Documentation – Referencing assets that address common questions and concerns around the CRA.

• Inputs and Contributions – Responses the working group has provided to standardisation bodies through requests, open consultations, or CRA expert group feedback.

• White Papers – Covering key topics that deepen understanding of the CRA and its essential elements.

• Specifications – Community-developed standards that propose technical solutions to CRA implementation challenges.

Each deliverable listed in the table provides key details:

• Status – whether a deliverable is planned, in progress, cancelled, or completed.

• Name – the title of the deliverable.

• Owner – the task force or subgroup responsible for development.

• Timing – draft and final due dates.

Understanding the Status Indicators

To help you quickly see where things stand, each deliverable is assigned a status:

• No icon – Planned but not yet started.

• Work in Progress ✍️– Actively discussed and developed in the group’s regular meetings.

• Cancelled ❌– Considered but deprioritised as no longer relevant.

• Submitted 🚀– Completed deliverables, marked with a launch icon.

Each deliverable also links to a more detailed description, including: an abstract describing its intent, the target stakeholders, and the current draft. Where available, you’ll also find a link to the work-in-progress version, making it easy to contribute directly.

How You Can Contribute

The deliverables plan isn’t just a tracking tool; it’s your roadmap for contribution. By browsing the plan, you can:

• See which topics are under active discussion.

• Understand the scope and objectives of each deliverable.

• Access draft versions and contribute your expertise.

All deliverables clearly outline their type, license, target stakeholders, and ownership, so you know how your input can add value.

If you’re ready to get started, the deliverables plan is the first place to look. It’s where you’ll gain visibility into the ongoing activities of the ORC community and find the best opportunities to contribute to our shared mission: ensuring that open source software remains secure, resilient, and compliant with European regulations.