Welcome to the March 2025 edition of the LF Europe Newsletter. We're covering–LF Europe announcements, project updates, policy + regulations news, events, and more. We’re so glad you’re here. Check out the highlights, save the dates, and be sure to register for upcoming events!
Check out our latest LF Research report, Pathways to Cybersecurity Best Practices in Open Source, which explores the impact of the Cyber Resilience Act on open source software. The report dives into new cybersecurity obligations for manufacturers and stewards, while spotlighting challenges like long-term support, regulatory uncertainty, and standardization gaps. It also offers recommendations on security tool investments, collaboration, and emerging threats, including AI-driven risks.
The report highlights the cybersecurity practices of three LF projects—Yocto Project, Zephyr, and Civil Infrastructure Platform—offering practical insights for the open source community as it navigates this evolving regulatory environment.
We’re excited to announce that the Linux Foundation Europe Member Summit will be held on October 28th at the beautiful De Oude Vismijn in Ghent, Belgium. This is a key event for our members, focusing on driving open source collaboration and innovation. Be sure to mark your calendars. Learn more.
LF Research and LF Training & Certification have partnered once again for their annual 2025 State of Tech Talent Survey! If you’re involved with the hiring and training of IT professionals, help us understand how the community is resourcing amidst new and shifting market priorities. This survey closes on March 31st - make sure to have your voice heard before then!
The Linux Foundation recently published two reports investigating the readiness of the open source community to comply with the EU Cyber Resilience Act (CRA).
The first report, Unaware and Uncertain: The Stark Realities of Cyber Resilience Act Readiness in Open Source, highlights significant knowledge gaps in the open source ecosystem when it comes to the CRA. Survey data reveals that most respondents are unfamiliar with the CRA, uncertain about compliance deadlines, and unaware of penalties. The report includes various recommendations for manufacturers and stewards to prepare themselves for the regulation.
Want to know what the LF community is doing about CRA compliance? Read the second report, which is listed in the above "Policies + regulations" section, Pathways to Cybersecurity Best Practices in Open Source.
To register for in-person attendance or virtual LF events, please view our full calendar of events here, and be sure to subscribe to our events newsletter. Check out our Flickr stream for photos of past events!
LF Europe Roadshows are one-day events offering a platform for networking, collaboration, and learning. These events bring together community members, executives, and experts for in-depth discussions on critical open source topics. For more info, check out the sponsorship prospectus.
Are you engaged in building AI products using cloud native? Join us for a special discussion at KubeCon on April 2nd to collectively prioritize issues, share top-of-mind concerns, and problem solve.
Space is limited. Please RSVP by Friday, March 28th by emailing registration@linuxfoundation.org.
This summit will gather the LF Energy community including electric utilities, technology vendors, global energy companies, researchers, and other industry stakeholders to learn about LF Energy and its projects, collaborate, and share best practices. Registration opens 9 April. Learn more.
Follow the Linux Foundation on social media to get all the latest info, updates on upcoming events, and breaking news and announcements from the global open source ecosystem. Follow us here: Mastodon, Bluesky, LinkedIn, and X.