So, I think this new legislation might be bad, as the distinction between a component vs a finished product is a lot less clear in software, and particularly open-source projects. I'm not sure the lawmakers will consider this carefully.