Asking as somebody who does not really get this law jargon - if you distribute y... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ramtatatam on Nov 14, 2022 \| parent \| context \| favorite \| on: Open-source software vs. the proposed Cyber Resili... Asking as somebody who does not really get this law jargon - if you distribute your software, which might be a little bit of glue code putting together some freely available open-source libraries, then would you be liable for auditing only this glue code or libraries as well? (since you would have to distribute them with your glue code, otherwise your product would be incomplete)

hakre on Nov 14, 2022 [–]

This is a case-by-case thing to analyse.

However, as I understand it: If it applies (e.g. commercial context) and you distribute the software or offer a product based on the software, you need to show the audit of all, not just a part (e.g. the glue code).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact