The EU’s Cyber Resilience Act (CRA) recently gained political agreement, and is in the process of being adopted by the parliament. This expansive regulation will deeply affect how ICT products are designed, sold, and maintained in a more secure manner throughout the EU.