Community News

The ORC Working Group’s release of its CRA compliance resource inventory provides a much-needed starting point for developers, maintainers, and manufacturers working with open source. 

As summer winds down, ORC is gearing up for a busy event season. From global security summits to community-driven gatherings, this fall will be packed with opportunities to connect, share knowledge, and advance the conversation around the Cyber Resilience Act and upcoming regulations.

Over the summer, students from the Computing Talent Initiative partnered with CodeDay to contribute to the Eclipse IDE. For many, this was their very first experience working on a large-scale open source project.

The one-size-fits-all structure of the Cyber Resilience Act (CRA) has raised concerns. Without careful consideration, the CRA could place undue burdens on maintainers and limit innovation. That’s where the Open Regulation Compliance (ORC) Working Group steps in.

In October last year, we marked a key achievement: 20,000 followers on LinkedIn. Less than a year later, we are pleased to share that this number has grown to 30,000. This milestone reflects the continued support, engagement, and enthusiasm of the global community connected to the Eclipse Foundation.

Since joining the Eclipse Foundation in December, the OpenHW Foundation has significantly advanced its mission to develop, verify, and deliver high quality, open source RISC-V processor cores and related IP for commercial and industrial applications – and we’ve got some exciting announcements to share in the coming months.

The Apache Software Foundation highlights its membership in the Open Regulatory Compliance (ORC) Working Group in its FY2025 Annual Report, underscoring the vital role foundations play in shaping EU regulations that impact open source.

Want to supercharge your GitHub workflows with AI? This demo shows how the Theia IDE and MCP integration can automate bug analysis, provide neutral input on discussions, and keep your documentation in sync—right inside your dev environment.

The Eclipse SDV community is entering a new phase of real‑world adoption with growing industry support, highlighted by a major European OEM memorandum, expanding APAC meetups, the upcoming Eclipse S‑CORE 0.5 release, and the launch of the open‑source OpenSOVD diagnostics project – all signaling maturation from vision to production‑ready platform.
 

The Imixs open source project today announced the release of Imixs-OIDC 3.0, a security module that combines OpenID Connect (OIDC) authentication flows with Bearer token validation in a single, unified architecture. This Jakarta EE 10 solution addresses the enterprise challenge of maintaining secure user authentication while providing robust API access control within one lightweight, framework-agnostic implementation.

Eclipse Temurin has achieved a remarkable milestone: 700 million cumulative downloads! This achievement is a testament to the community's trust and the increasing popularity of open source Java, which has seen downloads grow exponentially over the last three years.

In this edition of our Meet the SDV Committers series, Michael Engel talks about his path into automotive software, the transformative role of open source, and his contributions to advancing the software-defined vehicle ecosystem.

The conversation covers the evolution of open source, its industry acceptance, and emerging security challenges. Key initiatives like the Cyber Resilience Act and the OCCTET Project aim to enhance open source security.

The third edition of the Eclipse SDV Hackathon is just around the corner, and we’re excited to introduce the 2025 challenges.

GPT-5 or Sonnet-4: Which AI handles real coding better? Watch them go head-to-head in the Theia IDE on real-world tasks—from instruction following to complex bug fixing—and see which model fits your workflow.

Michael Plagge, VP Ecosystem Development at the Eclipse Foundation, joined "Under the Hood: Automotive Storytelling" to explore how open source collaboration is transforming automotive software development from the ground up.

The open source community is mobilizing in unprecedented fashion as the European Union's Cyber Resilience Act (CRA) approaches its September 2026 reporting deadline, with penalties reaching up to €15 million or 2.5% of global turnover for non-compliance. The Eclipse Foundation's Open Regulatory Compliance (ORC) Working Group has more than doubled its membership to over 50 organizations in just months, attracting technology giants Microsoft and Red Hat as strategic members alongside GitHub, Google, Nokia, and Mercedes-Benz.

(original article in German)

OCCTET isn't the Eclipse Foundation's only CRA-related initiative. The Open Regulatory Compliance Working Group (ORC Working Group) is also now offering initial resources to support CRA implementation and compliance. The Working Group has also expanded its membership: Microsoft and Red Hat are now on board as strategic members, along with Google, exkide, and Open Source Matters.

The first half of 2025 has been a period of foundational strengthening for the Oniro Working Group. We're not just building an operating system kit; we're crafting the tools that will redefine how devices interact, empowering developers to create new experiences. 

Here’s a preview of the topics and sessions shaping Code & Compliance Community Day 2025, taking place October 22–23, 2025 in Brussels. This event brings together open source maintainers, compliance leads, manufacturers, and institutional stakeholders to reflect on the Cyber Resilience Act’s (CRA) first year and help shape what comes next.