This category is for discussing how to actually implement the CRA in your day-to-day work.
If you’re working on compliance and want feedback on your approach, or you’re stuck trying to choose tools or set up workflows, this is where to ask. It’s also the place to debate the pros and cons of different methods, share what’s working, and learn from others tackling similar challenges.
Typical discussions here might include:
- What tools to use for vulnerability reporting or SBOM generation
- How to adapt your CI/CD pipeline to CRA requirements
- Ways to document compliance efficiently
- How to handle CE marking in a multi-component product
If you’re not sure how to do something, or want to sanity-check your setup, post it here. This category is for collaboration and practical problem-solving.