You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Remove Track B terminology from compliance docs; move control register to own page (#1273)
Track A/B is not standard CRA terminology, so replace with plain language
(risk-driven / compliance-only). The Final Control Register table moves to
a dedicated control_register.rst page to keep the compliance page focused.
The compliance page gains a status-key rubric and horizontal rules between
sections for readability.
https://claude.ai/code/session_01TzCDwHkJbD5jNtRXBXYT2a
Co-authored-by: Claude <noreply@anthropic.com>
The full list of all controls is available on the :doc:`control_register` page.
30
+
31
+
.. rubric:: Status key
32
+
33
+
.. list-table::
34
+
:widths: 10 90
35
+
36
+
* - ✓
37
+
- Implemented — control satisfies the objective fully.
38
+
* - ⚠
39
+
- Partial — control exists but a gap remains (see Gaps column).
40
+
* - N/A
41
+
- Not applicable — the objective does not apply to dfetch.
42
+
43
+
----
44
+
27
45
Classification Decision
28
46
-----------------------
29
47
@@ -42,7 +60,9 @@ Classification Decision
42
60
* - Mandatory obligations
43
61
- None — not a commercial product; no CE marking required
44
62
* - Voluntary alignment
45
-
- This Track B document is produced voluntarily under Article 13(5) to support downstream integrators who must account for open-source components in their own CRA conformity assessments.
63
+
- This compliance document is produced voluntarily under Article 13(5) to support downstream integrators who must account for open-source components in their own CRA conformity assessments.
64
+
65
+
----
46
66
47
67
Applicable Standards
48
68
--------------------
@@ -59,7 +79,7 @@ Applicable Standards
59
79
* - prEN 40000-1-2
60
80
- Cyber Resilience Principles and Risk Management
61
81
- Yes
62
-
- Process standard covering risk-based product security across the lifecycle. The Product Security Context (§6.2) is documented in :doc:`security`. Track A threat models (tm_supply_chain.py, tm_usage.py) implement §6.3–§6.6.
82
+
- Process standard covering risk-based product security across the lifecycle. The Product Security Context (§6.2) is documented in :doc:`security`. The threat models (tm_supply_chain.py, tm_usage.py) implement §6.3–§6.6.
63
83
- —
64
84
* - prEN 40000-1-3
65
85
- Vulnerability Handling Requirements
@@ -82,8 +102,10 @@ Applicable Standards
82
102
- IoT-specific standard. dfetch is a developer CLI tool with no IoT device functionality, physical interfaces, or consumer IoT use case.
83
103
- —
84
104
105
+
----
106
+
85
107
Part I — Product Security Requirements (ECR-a to ECR-m)
0 commit comments